Security update for libgcrypt SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:2178-1 Final 1 1 2018-08-03T14:50:25Z current 2018-08-03T14:50:25Z 2018-08-03T14:50:25Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libgcrypt This update for libgcrypt fixes the following issues: The following security vulnerability was addressed: - CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for ECDSA signatures (bsc#1097410). The following other issues were fixed: - Extended the fipsdrv dsa-sign and dsa-verify commands with the --algo parameter for the FIPS testing of DSA SigVer and SigGen (bsc#1064455). - Ensure libgcrypt20-hmac and libgcrypt20 are installed in the correct order. (bsc#1090766) This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2018-08/msg00002.html E-Mail link for openSUSE-SU-2018:2178-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 libgcrypt-1.6.1-45.1 libgcrypt-cavs-1.6.1-45.1 libgcrypt-devel-1.6.1-45.1 libgcrypt-devel-32bit-1.6.1-45.1 libgcrypt20-1.6.1-45.1 libgcrypt20-32bit-1.6.1-45.1 libgcrypt20-hmac-1.6.1-45.1 libgcrypt20-hmac-32bit-1.6.1-45.1 libgcrypt-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt-cavs-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt-devel-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt-devel-32bit-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt20-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt20-32bit-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt20-hmac-1.6.1-45.1 as a component of openSUSE Leap 42.3 libgcrypt20-hmac-32bit-1.6.1-45.1 as a component of openSUSE Leap 42.3 Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the _gcry_ecc_ecdsa_sign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host. CVE-2018-0495 openSUSE Leap 42.3:libgcrypt-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt-cavs-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt-devel-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt-devel-32bit-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt20-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt20-32bit-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt20-hmac-1.6.1-45.1 openSUSE Leap 42.3:libgcrypt20-hmac-32bit-1.6.1-45.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-08/msg00002.html https://www.suse.com/security/cve/CVE-2018-0495.html CVE-2018-0495 https://bugzilla.suse.com/1097410 SUSE Bug 1097410 https://bugzilla.suse.com/1121207 SUSE Bug 1121207