CVE-2026-11702

Name of the Vulnerable Software and Affected Versions Bytes::Random::Secure::Tiny versions prior to 1.012

Description Internal state for the Pseudo-Random Number Generator (PRNG) is shared across forked processes when an object is initialized before the fork occurs. This leads to the production of identical random streams, making secrets generated in multiprocess applications predictable across processes.

Recommendations Update to a version newer than 1.011.