Описание
Security update for libnettle
This update for libnettle fixes the following issues:
- CVE-2021-3580: Fixed a remote denial of service in the RSA decryption via manipulated ciphertext (bsc#1187060).
Список пакетов
HPE Helion OpenStack 8
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
Image SLES12-SP4-Azure-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-EC2-HVM-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-GCE-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-Azure
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-Azure-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-EC2-HVM
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-EC2-HVM-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-GCE
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP4-SAP-GCE-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-Basic-On-Demand
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-HPC-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-HPC-On-Demand
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-SAP-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-SAP-On-Demand
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-Azure-Standard-On-Demand
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-EC2-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-EC2-ECS-On-Demand
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-EC2-On-Demand
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-EC2-SAP-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-EC2-SAP-On-Demand
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-GCE-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-GCE-On-Demand
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-GCE-SAP-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-GCE-SAP-On-Demand
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-OCI-BYOS-BYOS
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libhogweed2-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
SUSE Linux Enterprise Server 12 SP2-BCL
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server 12 SP3-BCL
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server 12 SP3-LTSS
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server 12 SP5
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libnettle-devel-2.7.1-13.6.1
SUSE OpenStack Cloud 8
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE OpenStack Cloud 9
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE OpenStack Cloud Crowbar 8
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
SUSE OpenStack Cloud Crowbar 9
libhogweed2-2.7.1-13.6.1
libhogweed2-32bit-2.7.1-13.6.1
libnettle4-2.7.1-13.6.1
libnettle4-32bit-2.7.1-13.6.1
Ссылки
- Link for SUSE-SU-2021:2135-1
- E-Mail link for SUSE-SU-2021:2135-1
- SUSE Security Ratings
- SUSE Bug 1187060
- SUSE CVE CVE-2021-3580 page
Описание
A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.
Затронутые продукты
HPE Helion OpenStack 8:libhogweed2-2.7.1-13.6.1
HPE Helion OpenStack 8:libhogweed2-32bit-2.7.1-13.6.1
HPE Helion OpenStack 8:libnettle4-2.7.1-13.6.1
HPE Helion OpenStack 8:libnettle4-32bit-2.7.1-13.6.1
Ссылки
- CVE-2021-3580
- SUSE Bug 1187060
- SUSE Bug 1187892