https://bugzilla.redhat.com/show_bug.cgi?id=2035341
--- Doc Text *updated* by Eric Christensen <sparks(a)redhat.com> ---
A flaw was found in the way the perl-App-cpanminus performed verification of package
signatures stored in CHECKSUMS files. A malicious or compromised CPAN server used by a
user, or a man-in-the-middle attacker, could use this flaw to bypass signature
verification.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2035341