VDB
GCVE-110-MAGEIA-2016-208
GCVE-110-MAGEIA-2016-208
Advisory Published
Updated botan packages fix security vulnerabilities:
During RSA decryption, how long decoding of PKCS #1 v1.5 padding took was
input dependent. If these differences could be measured by an attacker,
it could be used to mount a Bleichenbacher million-message attack
(CVE-2015-7827).
ECDSA (and DSA) signature algorithms perform a modular inverse on the
signature nonce k. The modular inverse algorithm used had input dependent
loops, and it is possible a side channel attack could recover sufficient
information about the nonce to eventually recover the ECDSA secret key
(CVE-2016-2849).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | botan | 0 (affected), 1.10.12-1.1.mga5 (unaffected) | — |
Aliases
Transitive aliases
SUSE-SU-2017:1222-1EUVD-2017-11944CVE-2018-20187EUVD-2018-20727GHSA-hqg9-gjhg-w3qgCVE-2014-9742VVD-MAGEIA-2017-321CVE-2015-5727GSD-2015-5727CNVD-2016-02822GHSA-x8qg-whhh-m3phEUVD-2016-9949CVE-2018-9860CVE-2018-12435GHSA-xwpq-mm7j-gvv6EUVD-2017-6233CNVD-2016-02820GSD-2015-7827CVE-2017-2801GSD-2015-5726VVD-GENTOO-2016-574034EUVD-2015-5673EUVD-2015-7725CVE-2016-9132VVD-MAGEIA-2016-102CNVD-2016-02821EUVD-2014-9548CVE-2017-14737EUVD-2018-12754VVD-MAGEIA-2017-422SUSE-SU-2017:1305-1CVE-2016-2194EUVD-2015-5672GHSA-jcv7-v2cp-24v2OPENSUSE-SU-2024:10594-1CNVD-2016-03248EUVD-2016-3278GHSA-7gxp-rgh3-mj5pEUVD-2016-3279GHSA-r872-mggq-8gfhGHSA-3qgv-jw3w-gq48EUVD-2018-21453CVE-2015-5726CVE-2016-2195GHSA-674g-g96j-pr63EUVD-2016-3922GHSA-455r-3288-3qq5CVE-2018-9127SUSE-SU-2017:1351-1VVD-GENTOO-2016-581324GHSA-pfgh-27pp-8vx8GHSA-v886-f89m-8x7jVVD-MAGEIA-2017-327EUVD-2018-4406GHSA-m7rm-rc3m-vmq2GSD-2014-9742GSD-2018-20187OPENSUSE-SU-2024:10477-1GHSA-g9j4-hp3j-g668GHSA-xr8r-2cxg-2rgp
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.