|
|
Log in / Subscribe / Register

libgcrypt: information disclosure

Package(s):libgcrypt CVE #(s):
Created:September 22, 2015 Updated:September 23, 2015
Description: From the openSUSE advisory:

libgcrypt was updated to include countermeasures against Lenstra's fault attack on RSA Chinese Remainder Theorem optimization in RSA.

A signature verification step was updated to protect against leaks of private keys in case of hardware faults or implementation errors in numeric libraries.

GnuPG already performed this check by itself and was not affected. This fix is equivalent, but not equal to CVE-2015-5738

Alerts:
openSUSE openSUSE-SU-2015:1596-1 libgcrypt 2015-09-22
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds