rpm package
opensuse/libcryptopp&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/libcryptopp&distro=openSUSE%20Tumbleweed
Vulnerabilities (7)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-28285 | Cri | 9.8 | < 8.9.0-4.1 | 8.9.0-4.1 | May 14, 2024 | A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges. | |
| CVE-2023-50981 | — | < 8.9.0-2.1 | 8.9.0-2.1 | Dec 18, 2023 | ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853. | ||
| CVE-2023-50980 | — | < 8.9.0-1.1 | 8.9.0-1.1 | Dec 18, 2023 | gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing. | ||
| CVE-2023-50979 | — | < 8.9.0-6.1 | 8.9.0-6.1 | Dec 18, 2023 | Crypto++ (aka cryptopp) through 8.9.0 has a Marvin side channel during decryption with PKCS#1 v1.5 padding. | ||
| CVE-2021-40530 | — | < 8.6.0-1.1 | 8.6.0-1.1 | Sep 6, 2021 | The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and | ||
| CVE-2019-14318 | — | < 8.6.0-1.1 | 8.6.0-1.1 | Jul 30, 2019 | Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because scalar multiplic | ||
| CVE-2015-2141 | — | < 5.6.4-1.3 | 5.6.4-1.3 | Jul 1, 2015 | The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack. |
- affected < 8.9.0-4.1fixed 8.9.0-4.1
A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.
- CVE-2023-50981Dec 18, 2023affected < 8.9.0-2.1fixed 8.9.0-2.1
ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853.
- CVE-2023-50980Dec 18, 2023affected < 8.9.0-1.1fixed 8.9.0-1.1
gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.
- CVE-2023-50979Dec 18, 2023affected < 8.9.0-6.1fixed 8.9.0-6.1
Crypto++ (aka cryptopp) through 8.9.0 has a Marvin side channel during decryption with PKCS#1 v1.5 padding.
- CVE-2021-40530Sep 6, 2021affected < 8.6.0-1.1fixed 8.6.0-1.1
The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and
- CVE-2019-14318Jul 30, 2019affected < 8.6.0-1.1fixed 8.6.0-1.1
Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because scalar multiplic
- CVE-2015-2141Jul 1, 2015affected < 5.6.4-1.3fixed 5.6.4-1.3
The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack.