Advisories » MGASA-2026-0160

Updated perl-Catalyst-Plugin-Authentication package fixes a security vulnerability

Publication date: 29 May 2026
Modification date: 29 May 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-5091

Description

The updated package fixes a security vulnerability:
Catalyst::Plugin::Authentication versions through 0.10024 for Perl is
susceptible to timing attacks. (CVE-2026-5091)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35569
• https://www.openwall.com/lists/oss-security/2026/05/21/19
• https://metacpan.org/release/ETHER/Catalyst-Plugin-Authentication-0.10_025/changes
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5091

SRPMS

9/core

• perl-Catalyst-Plugin-Authentication-0.100.230-12.1.mga9