rpm package
suse/libnettle&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4
pkg:rpm/suse/libnettle&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-3580 | — | < 2.7.1-13.6.1 | 2.7.1-13.6.1 | Aug 5, 2021 | A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service. | ||
| CVE-2021-20305 | — | < 2.7.1-13.3.1 | 2.7.1-13.3.1 | Apr 5, 2021 | A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect res |
- CVE-2021-3580Aug 5, 2021affected < 2.7.1-13.6.1fixed 2.7.1-13.6.1
A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.
- CVE-2021-20305Apr 5, 2021affected < 2.7.1-13.3.1fixed 2.7.1-13.3.1
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect res