libcryptopp-devel-8.9.0-6.1 on GA media (moderate)

libcryptopp-devel-8.9.0-6.1 on GA media Announcement ID: openSUSE-SU-2026:10047-1 Rating: moderate Cross-References: CVE-2023-50979 CVSS scores: CVE-2023-50979 SUSE : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerability ca...

Security update for libcryptopp

This update for libcryptopp fixes the following issues: CVE-2023-50979: Fixed side-channel leakage during decryption with PKCS1v1.5 padding. bsc1218217 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

OPENSUSE-SU-2025:15627-1 libcryptopp-devel-8.9.0-4.1 on GA media

These are all security issues fixed in the libcryptopp-devel-8.9.0-4.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2024-25384

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2019-14318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or remote attacker, able to measure the duration of...

Linux Distros Unpatched Vulnerability : CVE-2023-50980

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gf2n.cpp in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service application crash via DER public-key data for an F2^m curve, if th...

Linux Distros Unpatched Vulnerability : CVE-2023-50979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypto++ aka cryptopp through 8.9.0 has a Marvin side channel during decryption with PKCS1 v1.5 padding. CVE-2023-50979 Note that Nessus relies on the presence ...

NewStart CGSL MAIN 7.02 : cryptopp Multiple Vulnerabilities (NS-SA-2025-0115)

The remote NewStart CGSL host, running version MAIN 7.02, has cryptopp packages installed that are affected by multiple vulnerabilities: - ModularSquareRoot in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service infinite loop via crafted DER public-key data associate...

CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

DEBIAN-CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

CVE-2024-28285

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges...

CVE-2024-28285

CVE-2024-28285 is a fault injection vulnerability in Crypto++ 8.9, affecting the SymmetricDecrypt function in cryptopp/elgamal.h. An attacker co-residing on the same system can disclose information and escalate privileges. Multiple feeds (openSUSE/SUSE advisories) describe a fix in libcryptopp/li...

PT-2024-22380 · Unknown +1 · Cryptopp Crypto++ +1

Name of the Vulnerable Software and Affected Versions: Cryptopp Crypto++ version 8.9 Description: A fault injection issue in the SymmetricDecrypt function, located in cryptopp/elgamal.h, allows an attacker to co-reside in the same system with a victim process. This enables the attacker to disclos...

DEBIAN-CVE-2023-50981

ModularSquareRoot in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service infinite loop via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853...

DEBIAN-CVE-2023-50980

gf2n.cpp in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service application crash via DER public-key data for an F2^m curve, if the degree of each term in the polynomial is not strictly decreasing...

CVE-2023-50979

Crypto++ aka cryptopp through 8.9.0 has a Marvin side channel during decryption with PKCS1 v1.5 padding...

CVE-2023-50979

Crypto++ aka cryptopp through 8.9.0 has a Marvin side channel during decryption with PKCS1 v1.5 padding...