Oval Definition:	oval:org.opensuse.security:def:20186829
Revision Date: 2022-08-07 Version: 1 Title: CVE-2018-6829 Description: cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt messages directly, improperly encodes plaintexts, which allows attackers to obtain sensitive information by reading ciphertext data (i.e., it does not have semantic security in face of a ciphertext-only attack). The Decisional Diffie-Hellman (DDH) assumption does not hold for Libgcrypt's ElGamal implementation. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2018-6829 SUSE CVE-2018-6829 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.0 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libgcrypt is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libgcrypt is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libgcrypt is not affected Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information libgcrypt-devel is not affected OR libgcrypt20 is not affected OR libgcrypt20-32bit is not affected OR libgcrypt20-hmac is not affected OR libgcrypt20-hmac-32bit is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND libgcrypt is not affected OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND libgcrypt is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed AND libgcrypt is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information libgcrypt-devel is not affected OR libgcrypt20 is not affected OR libgcrypt20-32bit is not affected OR libgcrypt20-hmac is not affected OR libgcrypt20-hmac-32bit is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libgcrypt is not affected Definition Synopsis SUSE Linux Enterprise Micro 5.0 is installed AND libgcrypt is not affected Definition Synopsis SUSE Linux Enterprise Micro 5.1 is installed AND Package Information libgcrypt20 is not affected OR libgcrypt20-hmac is not affected
BACK