Update Info

openSUSE-2026-170

Security update for perl-CryptX

Type: security
Severity: important
Issued: 2026-05-19
Description:
This update for perl-CryptX fixes the following issues:

- updated to 0.89.0 (0.089)
  0.089   2026-05-10
          - new: Crypt::ASN1
          - new: Crypt::AuthEnc::SIV
          - new: Crypt::AuthEnc::XChaCha20Poly1305
          - new: Crypt::Cipher::SM4
          - new: Crypt::Digest::TurboSHAKE
          - new: Crypt::Digest::KangarooTwelve
          - new: Crypt::PK::Ed448
          - new: Crypt::PK::X448
          - new: Crypt::Stream::XChaCha
          - new: Crypt::Stream::XSalsa20
          - Crypt::PK::Ed25519 - new functions: sign_message_ctx, verify_message_ctx, sign_message_ph, verify_message_ph
          - Crypt::Digest: object digest accessors now finalize the object; use reset() before reuse
          - Crypt::Mac + Crypt::AuthEnc: finalized-object lifecycle is now enforced consistently
          - security/hardening fixes across Digest/Mac/AuthEnc/Mode/Stream/PK/PRNG
          - fixes related to wycheproof test suite
          - documentation cleanup & improvements
          - support for RFC 8702 RSA-PSS-SHAKE128/256 and ECDSA-SHAKE128/256
          - support for FRP256v1 elliptic-curve
          - bundled libtomcrypt update branch:develop (commit: 8b5af49b 2026-05-06)
  0.088   2026-04-23
          - Crypt::KeyDerivation - new functions: pbkdf1_openssl, bcrypt_pbkdf, scrypt_pbkdf, argon2_pbkdf
          - Crypt::Misc - new functions: random_v7uuid, is_uuid
          - bundled libtomcrypt update branch:develop (commit: 2e441a17 2026-04-15)
          - bundled libtommath update branch:develop (commit: ae40a87 2026-04-20)
          - security fix CVE-2026-41564 https://github.com/DCIT/perl-CryptX/security/advisories/GHSA-24c2-gp6c-24c6
            (boo#1262697)

- updated to 0.87.0 (0.087)
  0.087   2025-06-11
          - bundled libtomcrypt update branch:develop (commit: d448df1 2025-05-06)
          - bundled libtommath update branch:develop (commit: 839ae9e 2025-06-11)
          - fix #120 Create SECURITY.md
          - fix #121 Failures on ARM after upgrading libtommath
          - security fix CVE-2025-40914 https://github.com/DCIT/perl-CryptX/security/advisories/GHSA-6fh3-7qjq-8v22
            (boo#1244472)

- updated to 0.86.0 (0.086)
  0.086   2025-05-02
          - fixe #118 Syncing with recent Math-BigInt
          - bundled libtomcrypt update branch:develop (commit:3905c289 2025-04-23)

- updated to 0.85.0 (0.085)
  0.085   2025-02-08
          - fix #114 #113 #112 (improved detection of Apple+x86_64 / AESNI)
          - fix #115 Crypt::PRNG - fix typo and specify ChaCha20 is the default

- updated to 0.84.0 (0.084)
  0.084   2024-10-16
          - libtommath: fix cpantesters crash on freebsd/i386
          - updated ppport.h
  0.083   2024-10-15
          - fix #110 regression: 0.081 fails to parse PEMs that 0.080 parsed fine
          - bundled libtomcrypt update branch:develop (commit:cbb01b37 2024-10-14)
  0.082   2024-10-07
          - fix #111 libcryptx-perl: t/sshkey.t fails on some architectures
          - CHANGE: Crypt::Cipher::Blowfish max key size increased to 72 bytes
          - bundled libtomcrypt update branch:develop (commit:29af8922 2024-10-07)
  0.081   2024-09-08
          - fix #107 Drop -msse4.1 -maes for libtomcrypt
          - fix #105 Several functions in CryptX::AuthEnc deal weirdly with non-simple-string plaintext
          - fix #104 Add ethereum format signature
          - fix #103 Use standard __asm__ blocks instead of asm
          - fix #99 ltc: fix aesni flag handling
          - fix #87 Add possibility to use different hash algorithms in RSAES-OAEP
          - BIG CHANGE switch to PEM/SSH key loading via libtomcrypt
          - bundled libtomcrypt update branch:develop (commit:ce904c86 2024-09-02)

References

Packages

  • perl-CryptX-0.89.0-bp157.2.3.1