Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2017.0334
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2017-0334)
Zusammenfassung:	The remote host is missing an update for the 'libgcrypt' package(s) announced via the MGASA-2017-0334 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libgcrypt' package(s) announced via the MGASA-2017-0334 advisory. Vulnerability Insight: It was discovered that libgcrypt is prone to a local side-channel attack against the ECDH encryption with Curve25519, allowing recovery of the private key. Affected Software/OS: 'libgcrypt' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-0379 BugTraq ID: 100503 http://www.securityfocus.com/bid/100503 Debian Security Information: DSA-3959 (Google Search) https://www.debian.org/security/2017/dsa-3959 https://bugs.debian.org/873383 https://eprint.iacr.org/2017/806 https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=da780c8183cccc8f533c8ace8211ac2cb2bdee7b https://lists.debian.org/debian-security-announce/2017/msg00221.html https://security-tracker.debian.org/tracker/CVE-2017-0379 http://www.securitytracker.com/id/1041294
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.