vulnerability
SUSE: CVE-2015-5738: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Jul 26, 2016 | Jun 8, 2017 | Mar 10, 2022 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Jul 26, 2016
Added
Jun 8, 2017
Modified
Mar 10, 2022
Description
The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.
Solutions
suse-upgrade-libgcrypt-develsuse-upgrade-libgcrypt20suse-upgrade-libgcrypt20-32bitsuse-upgrade-libgcrypt20-hmacsuse-upgrade-libgcrypt20-hmac-32bit
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.