FEDORA-2015-2872 created by bcl 4 years ago for Fedora 22
stable

New upstream v1.4.19 - Use ciphertext blinding for Elgamal decryption [CVE-2014-3591] - Fixed data-dependent timing variations in modular exponentiation [related to CVE-2015-0837]

How to install

sudo dnf upgrade --advisory=FEDORA-2015-2872

This update has been submitted for testing by bcl.

4 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/42409/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/42409/steps/runtask/logs/stdio (results are informative only)

User Icon iddnna provided feedback 4 years ago
karma

This update is currently being pushed to the Fedora 22 testing updates repository.

4 years ago

This update has been pushed to testing

4 years ago
User Icon cairo provided feedback 4 years ago
karma
User Icon jpopelka commented & provided feedback 4 years ago
karma

no problems spotted

This update has reached the stable karma threshold and will be pushed to the stable updates repository

4 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/46967/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/46968/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/46968/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

4 years ago

This update has been pushed to stable

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
modified
4 years ago
BZ#1198145 CVE-2014-3591 libgcrypt: use ciphertext blinding for Elgamal decryption (new side-channel attack)
0
0
BZ#1198147 CVE-2015-0837 libgcrypt: last-level cache side-channel attack
0
0
BZ#1198154 CVE-2015-0837 CVE-2014-3591 gnupg: various flaws [fedora-all]
0
0

Automated Test Results