Medium: nss

Issue Overview: A cached side channel attack during handshakes using RSA encryption could allow for the decryption of encrypted content. This is a variant of the Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack and affects all NSS versions prior to NSS 3.41. CVE-2018-12404 Libgcrypt...

ALPINE-CVE-2019-13627

It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version affected: 1.8.4-5, 1.7.6-2+deb9u3, and 1.6.3-2+deb8u4. Versions fixed: 1.8.5-2 and 1.6.3-2+deb8u7...

UBUNTU-CVE-2019-13627

It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version affected: 1.8.4-5, 1.7.6-2+deb9u3, and 1.6.3-2+deb8u4. Versions fixed: 1.8.5-2 and 1.6.3-2+deb8u7...

openSUSE: Security Advisory for libgcrypt (openSUSE-SU-2019:2161-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : libgcrypt (openSUSE-2019-2161)

This update for libgcrypt fixes the following issues : Security issues fixed : - CVE-2019-13627: Mitigated ECDSA timing attack. bsc1148987 This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

OPENSUSE-SU-2019:2161-1 Security update for libgcrypt

This update for libgcrypt fixes the following issues: Security issues fixed: - CVE-2019-13627: Mitigated ECDSA timing attack. bsc1148987 This update was imported from the SUSE:SLE-15:Update update project...

EulerOS 2.0 SP3 : libgcrypt (EulerOS-SA-2019-2006)

According to the versions of the libgcrypt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization,...

Security update for libgcrypt (moderate)

openSUSE Security Update: Security update for libgcrypt Announcement ID: openSUSE-SU-2019:2161-1 Rating: moderate References: 1148987 Cross-References: CVE-2019-13627 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for...

[SECURITY] Fedora 29 Update: libgcrypt-1.8.5-1.fc29

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

Fedora Update for libgcrypt FEDORA-2019-bd0d5f0ea7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 29 : libgcrypt (2019-bd0d5f0ea7)

Minor bug and security fix release 1.8.5. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenabl...

[SECURITY] Fedora 31 Update: libgcrypt-1.8.5-1.fc31

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:2349-1)

This update for libgcrypt fixes the following issues : Security issues fixed : CVE-2019-13627: Mitigated ECDSA timing attack. bsc1148987 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automaticall...

SUSE-SU-2019:2349-1 Security update for libgcrypt

This update for libgcrypt fixes the following issues: Security issues fixed: - CVE-2019-13627: Mitigated ECDSA timing attack. bsc1148987...

Fedora 30 : libgcrypt (2019-1f05925d82)

Minor bug and security fix release 1.8.5. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenabl...

Fedora Update for libgcrypt FEDORA-2019-1f05925d82

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2019-0256 Updated libgcrypt packages fix security vulnerability

Updated libgcrypt packages fix security vulnerability: ECDSA timing side-channel attack vulnerability CVE-2019-13627...

Updated libgcrypt packages fix security vulnerability

Updated libgcrypt packages fix security vulnerability: ECDSA timing side-channel attack vulnerability CVE-2019-13627...

[SECURITY] Fedora 30 Update: libgcrypt-1.8.5-1.fc30

Libgcrypt is a general purpose crypto library based on the code used in GNU Privacy Guard. This is a development version...

FreeBSD : libgcrypt -- ECDSA timing attack (c9c6c2f8-cd54-11e9-af89-080027ef1a23)

GnuPG reports : Mitigate an ECDSA timing attack. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2021 Jacques Vidrine and contributors Redistribution and use in source VuXML and 'compiled' form...