Download
| Alert*
oval:org.secpod.oval:def:204143
Nettle is a cryptographic library that is designed to fit easily in almost any context: In cryptographic toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like lsh or GnuPG, or even in kernel space. Security Fix: * Multiple flaws were found in the way nettle imple ... oval:org.secpod.oval:def:2103407 The RSA and DSA decryption code in Nettle makes it easier for attackers to discover private keys via a cache side channel attack. oval:org.secpod.oval:def:501899 Nettle is a cryptographic library that is designed to fit easily in almost any context: In cryptographic toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like lsh or GnuPG, or even in kernel space. Security Fix: * Multiple flaws were found in the way nettle imple ... oval:org.secpod.oval:def:89044521 This update for libnettle fixes the following issues: - CVE-2016-6489: * Reject invalid RSA keys with even modulo. * Check for invalid keys, with even p, in dsa_sign. * Use function mpz_powm_sec instead of mpz_powm . oval:org.secpod.oval:def:1501631 Nettle is a cryptographic library that is designed to fit easily in almost any context: In cryptographic toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like lsh or GnuPG, or even in kernel space. Security Fix: * Multiple flaws were found in the way nettle imple ... oval:org.secpod.oval:def:703457 nettle: low level cryptographic library Nettle could be made to expose sensitive information over the network. oval:org.secpod.oval:def:51715 nettle: low level cryptographic library Nettle could be made to expose sensitive information over the network. oval:org.secpod.oval:def:2105792 Oracle Solaris 11 - ( CVE-2018-1165 ) |