Vulnerability in Timlegge Crypt::dsa
CVE-2026-14570
Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery. "Crypt::DSA::Util::makerandom forces the high bit of every value it returns to obtain an…
Affected products
- Timlegge Crypt::dsa — versions 0