Description
An interaction between the Perl MD5 module (perl-Digest-MD5) and Perl could produce incorrect MD5 checksums for UTF-8 data, which could prevent a system from properly verifying the integrity of the data.
Products
- Gisle Aas Digest-MD5 2.16
- Gisle Aas Digest-MD5 2.17
- Gisle Aas Digest-MD5 2.18
- Gisle Aas Digest-MD5 2.19
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-2002-0703, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2002-0703 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References