Oval Definition:	oval:org.cisecurity:def:119
Revision Date: 2016-02-08 Version: 2 Title: DSA-3296-1 -- libcrypto++ -- security update Description: Evgeny Sidorov discovered that libcrypto++, a general purpose C++ cryptographic library, did not properly implement blinding to mask private key operations for the Rabin-Williams digital signature algorithm. This could allow remote attackers to mount a timing attack and retrieve the user's private key. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-2141 DSA-3296-1 Platform(s): Debian 8 Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0 Product(s): libcrypto++ Definition Synopsis Debian 7 Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND libcrypto++ is earlier than 0:5.6.1-6+deb7u1 OR Debian 8 Debian 8 is installed AND libcrypto++ is earlier than 0:5.6.1-6+deb8u1
BACK