libgcrypt-1.8.5-6.el8
エラータID: AXSA:2021-2604:02
The libgcrypt library provides general-purpose implementations of various cryptographic algorithms.
Security Fix(es):
* libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm (CVE-2021-33560)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
CVE-2021-33560
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. This, for example, affects use of ElGamal in OpenPGP.
Update packages.
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. This, for example, affects use of ElGamal in OpenPGP.
N/A
SRPMS
- libgcrypt-1.8.5-6.el8.src.rpm
MD5: 48c67b6fa2018016ccc253a9c78cfa29
SHA-256: 820091cab6e08c2e1308f58681966d4993ab4c61004ec46d1dbb5bf418b67c2f
Size: 2.66 MB
Asianux Server 8 for x86_64
- libgcrypt-1.8.5-6.el8.x86_64.rpm
MD5: 40dd2aed6460420ba267bff7540a79ce
SHA-256: 1fbbc3ece8f901933b6a6294ced3fdd52539418f256107ac4e296d6143576604
Size: 461.56 kB - libgcrypt-devel-1.8.5-6.el8.x86_64.rpm
MD5: d0af971ddb5db787134bfb0f235c1b94
SHA-256: 532980eda2fd02f9984ce0527b25c119bce52fb8964c8f410e33013dc2d3e80f
Size: 148.45 kB - libgcrypt-1.8.5-6.el8.i686.rpm
MD5: 1b40f2aa0eff9606ac40a82167dd7307
SHA-256: 0d40cf4d9ec805ef68ea630281a74a2cec30b0a9da98f444c3fbfa76e7cdf02c
Size: 444.65 kB - libgcrypt-devel-1.8.5-6.el8.i686.rpm
MD5: c675e149c6c464199e85ab65907e2b20
SHA-256: c43957c626862dd0cce4808c04c2d5015d8161e6f2ec6f2534b61b81b20bdd8c
Size: 148.55 kB
日本語