Oval Definition:oval:com.ubuntu.bionic:def:2019129040000000
Revision Date:2019-06-20Version:1
Title:CVE-2019-12904 on Ubuntu 18.04 LTS (bionic) - low.
Description:In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.)
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-12904
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND libgcrypt20 package in bionic is affected, but a decision has been made to defer addressing it (note: '2020-01-06').
  • BACK