Lucene search
UbuntuUSN-1484-1HistoryJun 28, 2012 - 12:00 a.m.
PyCrypto vulnerability
2012-06-2800:00:00
ubuntu.com
35
9.5 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.3%
Releases
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04
Packages
- python-crypto - cryptographic algorithms and protocols for Python
Details
It was discovered that PyCrypto produced inappropriate prime numbers when
generating ElGamal keys. An attacker could use this flaw to facilitate
brute-forcing of ElGamal encryption keys.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.04 | noarch | python-crypto | <Β 2.4.1-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python-crypto-dbg | <Β 2.4.1-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python3-crypto | <Β 2.4.1-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python3-crypto-dbg | <Β 2.4.1-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-crypto | <Β 2.3-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-crypto-dbg | <Β 2.3-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | python-crypto | <Β 2.1.0-2ubuntu1.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | python-crypto-dbg | <Β 2.1.0-2ubuntu1.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | python-crypto | <Β 2.0.1+dfsg1-4ubuntu2.2 | UNKNOWN |
| Ubuntu | 10.04 | noarch | python-crypto-dbg | <Β 2.0.1+dfsg1-4ubuntu2.2 | UNKNOWN |
References
Related
nessus
nessus
openSUSE Security Update : python-crypto (openSUSE-SU-2012:0830-1)
2014-06-13 00:00:00
Mandriva Linux Security Advisory : python-pycrypto (MDVSA-2012:117)
2012-09-06 00:00:00
Mandriva Linux Security Advisory : python-pycrypto (MDVSA-2013:120)
2013-04-20 00:00:00
openvas
openvas
Fedora Update for python-crypto FEDORA-2012-8470
2012-06-04 00:00:00
Gentoo Security Advisory GLSA 201206-23 (pycrypto)
2012-08-10 00:00:00
Ubuntu: Security Advisory (USN-1484-1)
2012-07-03 00:00:00
cve
cve
CVE-2012-2417
2012-06-17 03:41:00
fedora
fedora
[SECURITY] Fedora 16 Update: python-crypto-2.3-6.fc16
2012-06-03 23:34:31
[SECURITY] Fedora 15 Update: python-crypto-2.3-6.fc15
2012-06-03 23:28:10
[SECURITY] Fedora 17 Update: python-crypto-2.6-1.fc17
2012-06-03 00:00:59
prion
prion
Design/Logic Flaw
2012-06-17 03:41:00
amazon
amazon
Medium: python-crypto
2012-06-11 10:27:00
freebsd
freebsd
pycrypto -- vulnerable ElGamal key generation
2012-05-24 00:00:00
osv
osv
PYSEC-2012-16
2012-06-17 03:41:00
seebug
seebug
Python PyCryptoε―ι₯ηζζΌζ΄
2012-05-29 00:00:00
github
github
PyCrypto makes Use of Insufficiently Random Values
2022-05-17 01:46:08
gentoo
gentoo
PyCrypto: Weak key generation
2012-06-24 00:00:00
ubuntucve
ubuntucve
CVE-2012-2417
2012-06-16 00:00:00
debian
debian
[SECURITY] [DSA 2502-1] python-crypto security update
2012-06-24 20:37:37
debiancve
debiancve
CVE-2012-2417
2012-06-17 03:41:00
securityvulns
securityvulns
[ MDVSA-2012:117 ] python-pycrypto
2012-07-29 00:00:00
python multiple security vulnerabilities
2012-07-29 00:00:00
9.5 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.3%
Related for USN-1484-1