Lucene search
K

12 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:29 a.m.16 views

Security Bulletin: Vulnerability in Libcrypt++ affects PowerKVM (CVE-2015-2141)

Summary PowerKVM is affected by a vulnerability in libcrypt++. This vulnerability is now fixed. Vulnerability Details CVEID: CVE-2015-2141 DESCRIPTION: libcrypt++ could allow a remote attacker to obtain sensitive information, caused by weak Rabin-Williams digital signature algorithm in...

5CVSS0.5AI score0.02879EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2015-0317)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.5AI score0.02879EPSS
Exploits0References4
Mageia
Mageia
added 2015/08/21 6:54 p.m.28 views

Updated libcryptopp package fixes security vulnerability

Evgeny Sidorov discovered that libcryptopp did not properly implement blinding to mask private key operations for the Rabin-Williams digital signature algorithm. This could allow remote attackers to mount a timing attack and retrieve the user's private key CVE-2015-2141...

5CVSS7.4AI score0.02879EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/07/21 12:0 a.m.16 views

openSUSE Security Update : libcryptopp (openSUSE-2015-504)

libcryptopp was updated to fix one security issue. This security issue was fixed : - CVE-2015-2141: The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 did not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allowed...

5CVSS7.3AI score0.02879EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/07/16 12:0 a.m.26 views

Fedora 22 : cryptopp-5.6.2-9.fc22 (2015-10914)

Fix for CVE-2015-2141 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

5CVSS7.2AI score0.02879EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/07/16 12:0 a.m.16 views

Fedora Update for cryptopp FEDORA-2015-10914

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.5AI score0.02879EPSS
Exploits0References2
securityvulns
securityvulns
added 2015/07/05 12:0 a.m.66 views

[SECURITY] [DSA 3296-1] libcrypto++ security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3296-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini June 29, 2015 https://www.debian.org/security/faq -...

5CVSS1.4AI score0.02879EPSS
Exploits0
OSV
OSV
added 2015/07/01 2:59 p.m.4 views

CVE-2015-2141

The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack...

6.2AI score
Exploits0References5
OSV
OSV
added 2015/07/01 2:59 p.m.1 views

DEBIAN-CVE-2015-2141

The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack...

5CVSS6.9AI score0.02879EPSS
Exploits0References1
CVE
CVE
added 2015/07/01 2:0 p.m.90 views

CVE-2015-2141

libcrypt++ 5.6.2 contains a timing-attack vulnerability in InvertibleRWFunction::CalculateInverse used with Rabin–Williams signatures, enabling remote extraction of private keys. Affected component is the private-key blinding during Rabin–Williams operations; impact is private-key disclosure unde...

5CVSS7.2AI score0.02879EPSS
Exploits0References5Affected Software1
Debian
Debian
added 2015/06/30 8:47 p.m.28 views

[SECURITY] [DLA 262-1] libcrypto++ security update

Package : libcrypto++ Version : 5.6.0-6+deb6u1 CVE ID : CVE-2015-2141 Evgeny Sidorov discovered that libcrypto++, a general purpose C++ cryptographic library, did not properly implement blinding to mask private key operations for the Rabin-Williams digital signature algorithm. This could allow...

5CVSS7.4AI score0.02879EPSS
Exploits0
Debian
Debian
added 2015/06/29 8:46 a.m.18 views

[SECURITY] [DSA 3296-1] libcrypto++ security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3296-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini June 29, 2015 https://www.debian.org/security/faq -...

5CVSS5.9AI score0.02879EPSS
Exploits0
Rows per page
Query Builder