Mehrere Probleme in Nettle
ID: | FEDORA-2016-8ee88aee21 |
Distribution: | Fedora |
Plattformen: | Fedora 22 |
Datum: | So, 21. Februar 2016, 11:00 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8805
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8803 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8804 |
Applikationen: | Nettle |
Originalnachricht |
|
Name : nettle Product : Fedora 22 Version : 2.7.1 Release : 6.fc22 URL : http://www.lysator.liu.se/~nisse/nettle/ Summary : A low-level cryptographic library Description : Nettle is a cryptographic library that is designed to fit easily in more or less any context: In crypto toolkits for object-oriented languages (C++, Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel space. -------------------------------------------------------------------------------- Update Information: Fixes CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 (secp256r1 and secp384r1 bugs) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304303 - CVE-2015-8803 nettle: secp256 calculation bug https://bugzilla.redhat.com/show_bug.cgi?id=1304303 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nettle' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |