Fluid Attacks Database

Description

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	libcryptx-perl	>=0 <0.066-1	0.066-1
debian 12	libcryptx-perl	>=0 <0.066-1	0.066-1
debian 13	libcryptx-perl	>=0 <0.066-1	0.066-1
debian 14	libcryptx-perl	>=0 <0.066-1	0.066-1

Aliases

1. CVE-2025-409122. NVD-2025-409123. OSV-DEBIAN-2025-409124. OSV-2025-409125. SECURITY-TRACKER-CVE-2025-40912

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.