Nonce Reuse in Crypt::DSA Versions for Perl by TIMLEGGE
CVE-2026-12205

Currently unrated

Key Information:

Vendor

Timlegge

Status
Crypt::dsa
Vendor
CVE Published:
15 June 2026

What is CVE-2026-12205?

The Crypt::DSA library versions prior to 1.21 for Perl exhibit a significant security flaw where the nonce used during the signing process is reused across multiple signatures. This issue arises because the library caches the nonce material in the Key object without the necessary clearance after each signing operation. Consequently, utilizing the same Key object to sign multiple messages results in the generation of identical 'r' values, which can lead to the recovery of private keys. Any keys signed with affected versions should be treated as compromised and revoked immediately.

Affected Version(s)

Crypt::DSA 0 < 1.21

References

https://metacpan.org/release/TIMLEGGE/Crypt-DSA-1.20/sour...
https://metacpan.org/release/TIMLEGGE/Crypt-DSA-1.21/changes
release-notes

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Richard Kettlewell
.