CVE-2015-8804

Related Files

Red Hat Security Advisory 2016-2582-02

Posted Nov 3, 2016

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-2582-02 - Nettle is a cryptographic library that is designed to fit easily in almost any context: In cryptographic toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like lsh or GnuPG, or even in kernel space. Security Fix: Multiple flaws were found in the way nettle implemented elliptic curve scalar multiplication. These flaws could potentially introduce cryptographic weaknesses into nettle's functionality.

tags | advisory, kernel, python

systems | linux, redhat

advisories | CVE-2015-8803, CVE-2015-8804, CVE-2015-8805, CVE-2016-6489

SHA-256 | e5dfca04374bb6d08b4923e98d607077727bd94ebabbe338b9888f47ba0f959f

Download | Favorite | View

Ubuntu Security Notice USN-2897-1

Posted Feb 15, 2016

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2897-1 - Hanno Boeck discovered that Nettle incorrectly handled carry propagation in the NIST P-256 elliptic curve. Hanno Boeck discovered that Nettle incorrectly handled carry propagation in the NIST P-384 elliptic curve. Niels Moeller discovered that Nettle incorrectly handled carry propagation in the NIST P-256 elliptic curve. Various other issues were also addressed.

tags | advisory

systems | linux, ubuntu

advisories | CVE-2015-8803, CVE-2015-8804, CVE-2015-8805

SHA-256 | df7a203efaf3488a14da93462980f6902abd64fb32d7d4bc26d5c1a3d30ca9c4

Download | Favorite | View