vulnerability

SUSE: CVE-2021-3345: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Jan 29, 2021	Oct 26, 2022	Oct 26, 2022

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Jan 29, 2021

Added

Oct 26, 2022

Modified

Oct 26, 2022

Description

_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a large count value. It is recommended to upgrade to 1.9.1 or later.

Solutions

suse-upgrade-libgcrypt-develsuse-upgrade-libgcrypt20suse-upgrade-libgcrypt20-32bitsuse-upgrade-libgcrypt20-hmacsuse-upgrade-libgcrypt20-hmac-32bit

References

CVE-2021-3345
https://attackerkb.com/topics/CVE-2021-3345

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today