Описание
Security update for python-rsa
This update for python-rsa fixes the following issues:
- CVE-2020-25658: Fixed a Bleichenbacher timing oracle attack against RSA decryption (bsc#1178676).
Список пакетов
Image SLES12-SP5-EC2-BYOS
python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-ECS-On-Demand
python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-On-Demand
python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-SAP-BYOS
python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-SAP-On-Demand
python-rsa-3.1.4-12.19.2
SUSE Linux Enterprise Module for Public Cloud 12
python-rsa-3.1.4-12.19.2
Ссылки
- Link for SUSE-SU-2023:0648-1
- E-Mail link for SUSE-SU-2023:0648-1
- SUSE Security Ratings
- SUSE Bug 1178676
- SUSE CVE CVE-2020-25658 page
Описание
It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to decrypt parts of the cipher text encrypted with RSA.
Затронутые продукты
Image SLES12-SP5-EC2-BYOS:python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-ECS-On-Demand:python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-On-Demand:python-rsa-3.1.4-12.19.2
Image SLES12-SP5-EC2-SAP-BYOS:python-rsa-3.1.4-12.19.2
Ссылки
- CVE-2020-25658
- SUSE Bug 1178676