SUSE SLES15 Security Update : python-pycryptodome (SUSE-SU-2024:0585-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0585-1 advisory. - PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-523...

SUSE-SU-2024:0585-1 Security update for python-pycryptodome

This update for python-pycryptodome fixes the following issues: - CVE-2023-52323: Fixed side-channel leakage in RSA decryption by using constant-time faster padding decoding for OAEP bsc1218564...

SUSE SLES15 / openSUSE 15 Security Update : python-pycryptodomex (SUSE-SU-2024:0557-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0557-1 advisory. - PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

Ubuntu: Security Advisory (USN-6595-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6595-1 pycryptodome vulnerability

It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information...

USN-6595-1: PyCryptodome vulnerability

It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information...

Ubuntu 22.04 LTS : PyCryptodome vulnerability (USN-6595-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6595-1 advisory. It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitiv...

Amazon Linux 2023 : python3-pycryptodomex, python3-pycryptodomex-selftest (ALAS2023-2024-494)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-494 advisory. PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-52323 Tenable has extracted the preceding description block directl...

Medium: python-pycryptodomex

Issue Overview: PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-52323 Affected Packages: python-pycryptodomex Issue Correction: Run dnf update python-pycryptodomex --releasever 2023.3.20240122 or dnf update...

The vulnerability of libraries for generating Bitcoin addresses and private keys in PyCryptodome and PyCryptodomeX lies in the exposure to information disclosure due to inconsistencies. This vulnerability allows attackers to gain unauthorized access to protected information.

The vulnerability of libraries for generating Bitcoin addresses and private keys in PyCryptodome and PyCryptodomeX involves information disclosure due to mismatches in their functionality. Exploiting this vulnerability could allow an unauthorized attacker to gain unauthorized access to protected...

OESA-2024-1053 python-pycryptodomex security update

PyCryptodome is a self-contained Python package of low-level cryptographic primitives. Security Fixes: PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.CVE-2023-52323...

OESA-2024-1046 python-pycryptodome security update

PyCryptodome is a self-contained Python package of low-level cryptographic primitives. It supports Python 2.6 and 2.7, Python 3.4 and newer, and PyPy. You can install it with:: pip install pycryptodome All modules are installed under the Crypto package. Check the pycryptodomex project for the...

PyCryptodome < 3.19.1 Side Channel Leak

The version of PyCryptodome installed on the remote host is prior to 3.19.1. It is, therefore, affected by a vulnerability. - A side-channel leakage with OAEP decryption could be exploited to carry out a Manger attack. CVE-2023-52323 Note that Nessus has not tested for this issue but has instead...

Information Leak

pycryptodome and pycryptodomex are vulnerable to Information Leakage. The vulnerability is caused due to a side-channel leakage for OAEP decryption Optimal Asymmetric Encryption Padding used during RSA encryption. This can be exploited to mount a Manger attack leading to Information Leakage throu...

CVE-2023-52323

A flaw was found in PyCryptodome/pycryptodomex which may allow for side-channel leakage when performing OAEP decryption, which could be exploited to carry out a Manger attack...

SUSE CVE-2023-52323

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

GHSA-J225-CVW7-QRX7 PyCryptodome and pycryptodomex side-channel leakage for OAEP decryption

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...

aark-sdk (>=0.1.2 <=0.1.9), abenity (>=0.0.7 <=1.2.0) +401 more potentially affected by CVE-2023-52323 via pycryptodome (>=3.10.1 <=3.19.0)

pycryptodome PYPI version =3.10.1, =0.1.2, =0.0.7, =0.1.8, =0.3.1, =0.0.8, =0.0.1, =1.2.3, =1.0.3, =0.1.0, =1.0.0a14, =1.9.0, =2.0.0 and more Source cves: CVE-2023-52323 Source advisory: OSV:GHSA-J225-CVW7-QRX7...

CVE-2023-52323

PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack...