Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process
Reporter | Title | Published | Views | Family All 177 |
---|---|---|---|---|
Tenable Nessus | Photon OS 1.0: Libgcrypt PHSA-2018-1.0-0182 | 7 Feb 201900:00 | – | nessus |
Tenable Nessus | FreeBSD : libgcrypt -- side-channel attack vulnerability (9b5162de-6f39-11e8-818e-e8e0b747a45a) | 14 Jun 201800:00 | – | nessus |
Tenable Nessus | Fedora 28 : libgcrypt (2018-1ea5beb4cf) | 3 Jan 201900:00 | – | nessus |
Tenable Nessus | Slackware 14.2 / current : libgcrypt (SSA:2018-164-01) | 14 Jun 201800:00 | – | nessus |
Tenable Nessus | SUSE SLED12 / SLES12 Security Update : libgcrypt (SUSE-SU-2018:2089-1) | 30 Jul 201800:00 | – | nessus |
Tenable Nessus | Fedora 27 : libgcrypt (2018-6788454ab6) | 18 Jun 201800:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : libgcrypt (openSUSE-2018-795) | 6 Aug 201800:00 | – | nessus |
Tenable Nessus | Debian DSA-4231-1 : libgcrypt20 - security update | 18 Jun 201800:00 | – | nessus |
Tenable Nessus | EulerOS 2.0 SP5 : nss-softokn (EulerOS-SA-2019-2175) | 8 Nov 201900:00 | – | nessus |
Tenable Nessus | Debian DLA-1405-1 : libgcrypt20 security update | 2 Jul 201800:00 | – | nessus |
[
{
"product": "Libgcrypt before 1.7.10 and 1.8.x before 1.8.3",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Libgcrypt before 1.7.10 and 1.8.x before 1.8.3"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo