NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2020-36829

Summary	The Mojolicious module before 8.65 for Perl is vulnerable to secure_compare timing attacks that allow an attacker to guess the length of a secret string. Only versions after 1.74 are affected.
Publication Date	April 8, 2024, 9:15 a.m.
Registration Date	April 8, 2024, 4 p.m.
Last Update	Nov. 21, 2024, 2:30 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/mojolicious/mojo/issues/1599
2	https://github.com/mojolicious/mojo/issues/1599
3	https://github.com/mojolicious/mojo/pull/1601
4	https://github.com/mojolicious/mojo/pull/1601
5	https://lists.debian.org/debian-lts-announce/2024/06/msg00025.html
6	https://lists.debian.org/debian-lts-announce/2024/06/msg00025.html

Common Vulnerabilities List