[Secure-testing-commits] r53015 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jun 29 17:04:35 UTC 2017
Author: carnil
Date: 2017-06-29 17:04:35 +0000 (Thu, 29 Jun 2017)
New Revision: 53015
Modified:
data/CVE/list
Log:
Add CVE-2017-7526/libgcrypt
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-29 15:37:59 UTC (rev 53014)
+++ data/CVE/list 2017-06-29 17:04:35 UTC (rev 53015)
@@ -8537,8 +8537,14 @@
RESERVED
CVE-2017-7527
RESERVED
-CVE-2017-7526
+CVE-2017-7526 [Use of left-to-right sliding window method allows full RSA key recovery]
RESERVED
+ - libgcrypt20 1.7.8-1
+ - libgcrypt11 <removed>
+ NOTE: https://eprint.iacr.org/2017/627
+ NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=8725c99ffa41778f382ca97233183bcd687bb0ce
+ NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=78130828e9a140a9de4dafadbc844dbb64cb709a
+ NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=e6a3dc9900433bbc8ad362a595a3837318c28fa9
CVE-2017-7525
RESERVED
CVE-2017-7524 (tpm2-tools versions before 1.1.1 are vulnerable to a password leak due ...)
More information about the Secure-testing-commits
mailing list