A flaw was found in the way nettle’s RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.

CPENameOperatorVersion
debian_linuxeq9.0
nettlelt3.7.3
enterprise_linuxeq7.0
enterprise_linuxeq8.0

Name	Operator	Version
debian_linux	eq	9.0
nettle	lt	3.7.3
enterprise_linux	eq	7.0
enterprise_linux	eq	8.0

References

bugzilla.redhat.com/show_bug.cgi?id=1967983

lists.debian.org/debian-lts-announce/2021/09/msg00008.html

security.gentoo.org/glsa/202401-24

security.netapp.com/advisory/ntap-20211104-0006/

nessus 35

cbl_mariner 2

openvas 21

photon 7

debiancve 1

archlinux 1

cve 1

redhatcve 1

suse 2

cvelist 1

alpinelinux 1

nvd 1

osv 6

veracode 1

debian 3

mageia 1

gentoo 1

ubuntu 1

ubuntucve 1

cloudfoundry 1

rocky 1

oraclelinux 2

redhat 25

almalinux 1

ibm 5

ics 1

oracle 1

nessus

SUSE SLED15 / SLES15 Security Update : libnettle (SUSE-SU-2021:2143-1)

2021-06-28 00:00:00

Photon OS 3.0: Nettle PHSA-2021-3.0-0286

2021-08-24 00:00:00

EulerOS 2.0 SP3 : nettle (EulerOS-SA-2021-2598)

2021-10-25 00:00:00

cbl_mariner

CVE-2021-3580 affecting package nettle 3.7.2-1

2021-09-09 15:02:55

CVE-2021-3580 affecting package nettle for versions less than 3.7.3-1

2022-04-09 06:51:55

openvas

SUSE: Security Advisory (SUSE-SU-2021:2143-1)

2021-06-24 00:00:00

openSUSE: Security Advisory for libnettle (openSUSE-SU-2021:0906-1)

2021-06-25 00:00:00

openSUSE: Security Advisory for libnettle (openSUSE-SU-2021:2143-1)

2021-07-13 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0380

2021-08-19 00:00:00

Important Photon OS Security Update - PHSA-2021-0286

2021-08-19 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0426

2021-08-19 00:00:00

debiancve

CVE-2021-3580

2021-08-05 21:15:12

archlinux

[ASA-202106-28] nettle: denial of service

2021-06-09 00:00:00

cve

CVE-2021-3580

2021-08-05 21:15:12

redhatcve

CVE-2021-3580

2021-06-08 11:48:53

suse

Security update for libnettle (important)

2021-07-11 00:00:00

Security update for libnettle (important)

2021-06-24 00:00:00

cvelist

CVE-2021-3580

2021-08-05 00:00:00

alpinelinux

CVE-2021-3580

2021-08-05 21:15:12

nvd

CVE-2021-3580

2021-08-05 21:15:12

osv

CVE-2021-3580

2021-08-05 21:15:12

nettle - security update

2021-06-18 00:00:00

nettle vulnerabilities

2021-06-17 11:01:57

veracode

Denial Of Service (DoS)

2021-09-18 03:57:04

debian

[SECURITY] [DLA 2760-1] nettle security update

2021-09-18 14:46:40

[SECURITY] [DSA 4933-1] nettle security update

2021-06-18 18:58:09

[SECURITY] [DSA 4933-1] nettle security update

2021-06-18 18:58:09

mageia

Updated nettle packages fix security vulnerabilities

2021-06-29 20:31:40

gentoo

Nettle: Denial of Service

2024-01-16 00:00:00

ubuntu

Nettle vulnerabilities

2021-06-17 00:00:00

ubuntucve

CVE-2021-3580

2021-06-10 00:00:00

cloudfoundry

USN-4990-1: Nettle vulnerabilities | Cloud Foundry

2021-07-08 00:00:00

rocky

gnutls and nettle security, bug fix, and enhancement update

2021-11-09 09:23:20

oraclelinux

gnutls security update

2022-03-17 00:00:00

gnutls and nettle security, bug fix, and enhancement update

2021-11-16 00:00:00

redhat

(RHSA-2021:4451) Moderate: gnutls and nettle security, bug fix, and enhancement update

2021-11-09 09:23:20

(RHSA-2022:0434) Moderate: Release of OpenShift Serverless 1.20.0

2022-02-03 17:07:25

(RHSA-2021:4032) Low: Openshift Logging 5.2.3 bug fix and security update

2021-11-17 03:27:52

almalinux

Moderate: gnutls and nettle security, bug fix, and enhancement update

2021-11-09 09:23:20

ibm

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from gzip, jackson-databind, libssh, gnutls, nettle and zlib

2022-05-25 14:55:17

Security Bulletin: Multiple security vulnerabilities found in open source code that is shipped with IBM Security Verify Governance, Identity Manager virtual appliance component

2022-07-20 15:54:41

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93

2022-03-14 20:12:12

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

oracle

Oracle Critical Patch Update Advisory - April 2022

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.2%

JSON

Related for PRION:CVE-2021-3580