4 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003121)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003121 advisory. The mpipowm function in lib/mpi/mpi-pow.c in the Linux kernel through 4.8.11 does not ensure that memory is allocated for limb data, which allows local users to caus...
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm and the window size is not chosen appropriately. This for example affects use of ElGamal in OpenPGP.
...
DEBIAN-CVE-2016-8650
The mpipowm function in lib/mpi/mpi-pow.c in the Linux kernel through 4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service stack memory corruption and panic via an addkey system call for an RSA key with a zero exponent...
PT-2016-7540 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.8.12 Description: The issue is related to the mpi powm function in the Linux kernel, which does not properly allocate memory for limb data. This can be exploited by local users to cause a denial of service,...