| Revision Date: | 2015-06-11 | Version: | 1 |
| Title: | Security update for libgcrypt (Moderate) |
| Description: |
This update of libgcrypt fixes one security issue and brings various FIPS 140-2 related improvements.
libgcrypt now uses ciphertext blinding for Elgamal decryption (CVE-2014-3591)
FIPS 140-2 related changes: * The library performs its self-tests when the module is complete (the -hmac file is also installed).
Added a NIST 800-90a compliant DRBG.
Change DSA key generation to be FIPS 186-4 compliant.
Change RSA key generation to be FIPS 186-4 compliant.
Enable HW support in fips mode (bnc#896435)
Make DSA selftest use 2048 bit keys (bnc#898003)
Added ECDSA selftests and add support for it to the CAVS testing framework (bnc#896202)
Various CAVS testing improvements.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 896202
896435
898003
899524
900275
900276
905483
920057
928740
929919
CVE-2014-3591
SUSE-SU-2015:1179-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 12
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed AND Package Information
libgcrypt20-1.6.1-13.1 is installed
OR libgcrypt20-32bit-1.6.1-13.1 is installed
|