SUSE-SU-2019:1859-1 -- SLES libgcryptID: oval:org.secpod.oval:def:89050799 | Date: (C)2024-03-22 (M)2024-05-16 |
Class: PATCH | Family: unix |
This update for libgcrypt fixes the following issues: Security issues fixed: - CVE-2019-12904: The C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. Other bugfixes: - Don"t run full FIPS self-tests from constructor - Skip all the self-tests except for binary integrity when called from the constructor - Enforce the minimal RSA keygen size in fips mode - avoid executing some tests twice. - Fixed a race condition in initialization. - Fixed env-script-interpreter in cavs_driver.pl - Fixed redundant fips tests in some situations causing failure to boot in fips mode. This helps during booting of the system in FIPS mode with insufficient entropy.
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Desktop 15 |