Summary: | <dev-libs/libgcrypt-{1.5.4-r2,1.5.4-r101,1.6.5}: Side channel attack | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Kristian Fiskerstrand (RETIRED) <k_f> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | crypto+disabled |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.cs.tau.ac.IL/~tromer/ecdh/ | ||
Whiteboard: | A4 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Kristian Fiskerstrand (RETIRED)
2016-02-09 15:42:11 UTC
ebuild in process Arches, please stabilize: =dev-libs/libgcrypt-1.6.5 Stable targets: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 Backported fix to 1.5 branch added, arches, please also stabilize: =dev-libs/libgcrypt-1.5.4-r2 Stable targets: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 amd64 stable Stable for HPPA PPC64. x86 stable Stable on alpha. ppc stable sparc stable ia64 stable seems like 1.6.5 didn't actually have sparc/x86 marked stable, so i did that now, and all the remaining arches This issue was resolved and addressed in GLSA 201610-04 at https://security.gentoo.org/glsa/201610-04 by GLSA coordinator Kristian Fiskerstrand (K_F). |