[Git][security-tracker-team/security-tracker][master] Add CVE-2019-13627/libgcrypt

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1588bb0b by Salvatore Bonaccorso at 2019-08-29T15:26:57Z
Add CVE-2019-13627/libgcrypt

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6275,8 +6275,14 @@ CVE-2019-13629
 	RESERVED
 CVE-2019-13628
 	RESERVED
-CVE-2019-13627
+CVE-2019-13627 [ECDSA timing attack]
 	RESERVED
+	- libgcrypt20 <unfixed>
+	- libgcrypt11 <removed>
+	NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=b9577f7c89b4327edc09f2231bc8b31521102c79 (master)
+	NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=7c2943309d14407b51c8166c4dcecb56a3628567 (master)
+	NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=d5407b78cca9f9d318a4f4d2f6ba2b8388584cd9 (1.8.5)
+	NOTE: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=db4e9976cc31b314aafad6626b2894e86ee44d60 (1.8.5)
 CVE-2019-13626 (SDL (Simple DirectMedia Layer) 2.x through 2.0.9 has a heap-based buff ...)
 	- libsdl2 <unfixed>
 	[buster] - libsdl2 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1588bb0b6fd3cbdfcecfe4efdcd0002db1729091

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1588bb0b6fd3cbdfcecfe4efdcd0002db1729091
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190829/83642d24/attachment.html>