|
|
Subscribe / Log in / New account

Debian-LTS alert DLA-593-1 (nettle)



From:
    	      Ola Lundqvist <ola@inguza.com> 


To:
    	      debian-lts-announce@lists.debian.org 


Subject:
    	      [SECURITY] [DLA 593-1] nettle security update 


Date:
    	      Thu, 11 Aug 2016 20:59:02 +0200


Message-ID:
    	      <20160811185902.GA12680@inguza.net>


Cc:
    	      ola@inguza.com


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : nettle
Version        : 2.4-3+deb7u1
CVE ID         : CVE-2016-6489
Debian Bug     : 832983

The cryptographic library nettle had a potential information leak
problem reported.

CVE-2016-6489
  RSA code is vulnerable to cache sharing related attacks.

For Debian 7 "Wheezy", this problems has been fixed in version
2.4-3+deb7u1.

We recommend that you upgrade your nettle packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

- -- 
 --- Inguza Technology AB --- MSc in Information Technology ----
/  ola@inguza.com                    Folkebogatan 26            \
|  opal@debian.org                   654 68 KARLSTAD            |
|  http://inguza.com/                Mobile: +46 (0)70-332 1551 |
\  gpg/f.p.: 22F2 32C6 B1E0 F4BF 2B26  0A6A 5E90 DCFA 9426 876F /
 ---------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=SDgH
-----END PGP SIGNATURE-----
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds