String-Compare-ConstantTime Security Advisories - Cpan | Ecosyste.ms: Advisories

String-Compare-ConstantTime

Timing side-channel protected string compare

View on metacpan.org

Security Advisories for String-Compare-ConstantTime in cpan

about 1 year ago

String::Compare::ConstantTime for Perl through 0.321 is vulnerable to timing attacks that allow an attacker to guess the length of a secret string. As stated in the documentation: "If the lengths of the strings are different, because equals returns fa... CPANSA-String-Compare-ConstantTime-2024-13939

cpan String-Compare-ConstantTime

Filter by Severity