Security Advisories (1)

CVE-2025-40914 (2025-06-11)

Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328.

https://github.com/advisories/GHSA-j3xv-6967-cv88
https://github.com/libtom/libtommath/pull/546
https://metacpan.org/release/MIK/CryptX-0.086/source/src/ltm/bn_mp_grow.c
https://www.cve.org/CVERecord?id=CVE-2023-36328

NAME

Math::BigInt::LTM - Use the libtommath library for Math::BigInt routines

SYNOPSIS

use Math::BigInt lib => 'LTM';

## See Math::BigInt docs for usage.

DESCRIPTION

Provides support for big integer calculations by means of the libtommath c-library.

Since: CryptX-0.029

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

NAME

SYNOPSIS

DESCRIPTION

SEE ALSO

Module Install Instructions