Lucene search
SuseOPENSUSE-SU-2019:1792-1HistoryJul 23, 2019 - 12:00 a.m.
Security update for libgcrypt (moderate)
2019-07-2300:00:00
lists.opensuse.org
78
EPSS
0.002
Percentile
61.0%
An update that solves one vulnerability and has two fixes
is now available.
Description:
This update for libgcrypt fixes the following issues:
Security issues fixed:
- CVE-2019-12904: The C implementation of AES is vulnerable to a
flush-and-reload side-channel attack because physical addresses are
available to other processes. (The C implementation is used on platforms
where an assembly-language implementation is unavailable.) (bsc#1138939)
Other bugfixes:
- Don’t run full FIPS self-tests from constructor (bsc#1097073)
- Skip all the self-tests except for binary integrity when called from the
constructor (bsc#1097073) - Enforce the minimal RSA keygen size in fips mode (bsc#1125740)
- avoid executing some tests twice.
- Fixed a race condition in initialization.
- Fixed env-script-interpreter in cavs_driver.pl
- Fixed redundant fips tests in some situations causing failure to boot in
fips mode. (bsc#1097073)
This helps during booting of the system in FIPS mode with insufficient
entropy.
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1792=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.0 | i586 | < - openSUSE Leap 15.0 (i586 x86_64): | - openSUSE Leap 15.0 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.0 | x86_64 | < - openSUSE Leap 15.0 (i586 x86_64): | - openSUSE Leap 15.0 (i586 x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.0 | x86_64 | < - openSUSE Leap 15.0 (x86_64): | - openSUSE Leap 15.0 (x86_64):.x86_64.rpm |
Related
prion
prion
Design/Logic Flaw
2019-06-20 00:15:00
nessus
nessus
Photon OS 3.0: Libgcrypt PHSA-2019-3.0-0036
2024-07-23 00:00:00
Photon OS 2.0: Libgcrypt PHSA-2020-2.0-0227
2024-07-23 00:00:00
SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:1859-1)
2019-07-17 00:00:00
ubuntucve
ubuntucve
CVE-2019-12904
2019-06-20 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:1859-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1971-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for libgcrypt (openSUSE-SU-2019:1792-1)
2019-07-24 00:00:00
nvd
nvd
CVE-2019-12904
2019-06-20 00:15:10
redhatcve
redhatcve
CVE-2019-12904
2019-07-16 13:21:42
cvelist
cvelist
CVE-2019-12904
2019-06-19 23:34:13
alpinelinux
alpinelinux
CVE-2019-12904
2019-06-20 00:15:10
cve
cve
CVE-2019-12904
2019-06-20 00:15:10
osv
osv
libgcrypt-cavs-1.9.4-1.2 on GA media
2024-06-15 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0288
2020-04-11 00:00:00
Important Photon OS Security Update - PHSA-2020-0227
2020-04-08 00:00:00
Important Photon OS Security Update - PHSA-2020-0288
2020-04-11 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00