DEBIAN-CVE-2026-5091
- Source
- https://security-tracker.debian.org/tracker/CVE-2026-5091
- Import Source
- https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-5091.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2026-5091
- Upstream
- Published
- 2026-05-21T22:16:48.530Z
- Modified
- 2026-05-26T05:56:18.097166468Z
- Severity
-
- 5.1 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.
- References