Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-2141HistoryJul 01, 2015 - 2:59 p.m.
CVE-2015-2141
2015-07-0114:59:00
Debian Security Bug Tracker
security-tracker.debian.org
7
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.1%
The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libcrypto++ | < 5.6.1-7 | libcrypto++_5.6.1-7_all.deb |
| Debian | 11 | all | libcrypto++ | < 5.6.1-7 | libcrypto++_5.6.1-7_all.deb |
| Debian | 10 | all | libcrypto++ | < 5.6.1-7 | libcrypto++_5.6.1-7_all.deb |
| Debian | 999 | all | libcrypto++ | < 5.6.1-7 | libcrypto++_5.6.1-7_all.deb |
| Debian | 13 | all | libcrypto++ | < 5.6.1-7 | libcrypto++_5.6.1-7_all.deb |
Related
nessus
nessus
Fedora 21 : cryptopp-5.6.2-9.fc21 (2015-10911)
2015-07-16 00:00:00
Fedora 22 : cryptopp-5.6.2-9.fc22 (2015-10914)
2015-07-16 00:00:00
Debian DLA-262-1 : libcrypto++ security update
2015-07-01 00:00:00
osv
osv
libcrypto++ - security update
2015-06-30 00:00:00
archlinux
archlinux
crypto++: private key recovery
2015-07-24 00:00:00
ubuntucve
ubuntucve
CVE-2015-2141
2015-07-01 00:00:00
debian
debian
[SECURITY] [DLA 262-1] libcrypto++ security update
2015-06-30 21:00:27
[SECURITY] [DSA 3296-1] libcrypto++ security update
2015-06-29 08:46:45
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0317)
2015-10-15 00:00:00
Fedora Update for cryptopp FEDORA-2015-10914
2015-07-16 00:00:00
Debian: Security Advisory (DSA-3296-1)
2015-06-28 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: cryptopp-5.6.2-9.fc21
2015-07-16 02:37:03
[SECURITY] Fedora 22 Update: cryptopp-5.6.2-9.fc22
2015-07-16 02:37:42
ibm
ibm
cve
cve
CVE-2015-2141
2015-07-01 14:59:00
securityvulns
securityvulns
libcrypto++ timing attacks
2015-07-05 00:00:00
[SECURITY] [DSA 3296-1] libcrypto++ security update
2015-07-05 00:00:00
prion
prion
Code injection
2015-07-01 14:59:00
mageia
mageia
Updated libcryptopp package fixes security vulnerability
2015-08-21 21:54:52
freebsd
freebsd
cryptopp -- multiple vulnerabilities
2015-02-27 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
72.1%
Related for DEBIANCVE:CVE-2015-2141