Описание
Security update for python-pycryptodome
This update for python-pycryptodome fixes the following issues:
- CVE-2023-52323: Fixed side-channel leakage in RSA decryption by using constant-time (faster) padding decoding for OAEP (bsc#1218564).
Список пакетов
Image SLES15-SP3-SAP-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-BYOS
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-Hardened-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP5-SAP-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP5-SAP-Hardened-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP6-SAP-BYOS
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP6-SAP-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP6-SAP-Hardened-GCE
python3-pycryptodome-3.9.0-150200.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
python3-pycryptodome-3.9.0-150200.9.1
openSUSE Leap 15.5
python3-pycryptodome-3.9.0-150200.9.1
Ссылки
- Link for SUSE-SU-2024:0601-1
- E-Mail link for SUSE-SU-2024:0601-1
- SUSE Security Ratings
- SUSE Bug 1218564
- SUSE CVE CVE-2023-52323 page
Описание
PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.
Затронутые продукты
Image SLES15-SP3-SAP-BYOS-GCE:python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-BYOS-GCE:python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-BYOS:python3-pycryptodome-3.9.0-150200.9.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE:python3-pycryptodome-3.9.0-150200.9.1
Ссылки
- CVE-2023-52323
- SUSE Bug 1218564
- SUSE Bug 1226977