Control: severity -1 serious
Control: tag -1 + sid

On Mon, 13 Jul 2026 22:53:44 +0200, Christoph Biedl wrote:

Package: libcrypt-openssl-rsa-perl
Version: 0.41-1
Severity: important
Tags: upstream
X-Debbugs-Cc: [email protected]

Greetings,

it seems Crypt::OpenSSL::RSA::new_private_key can no longer handle a
private key in the PEM format with additional text - like it used to
since possibly the last ten years.

Raising the severity to serious. I suspect (without having tested) that this is also the reasons for the autopkgtest failures in libjson-webtoken-perl and libnet-oauth-perl which we are seeing at https://tracker.debian.org/pkg/libcrypt-openssl-rsa-perl (and which keeps libcrypt-openssl-rsa-perl out of testing anyway).



Cheers,
gregor

--
 .''`.  https://info.comodo.priv.at -- Debian Developer https://www.debian.org
 : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
 `. `'  Member VIBE!AT & SPI Inc. -- Supporter Free Software Foundation Europe
`-

Attachment: signature.asc
Description: Digital Signature

Reply via email to