FEDORA-2018-913c225b49 created by pghmcfc 2 years ago for Fedora 27
stable

The textbook ElGamal implementation is not secure. PyCrypto and some other implementations use the wrong algorithm, which may lead to some information disclosure simply by looking at the encrypted text. For a full description, see https://github.com/dlitz/pycrypto/issues/253

This update includes a fix for this problem backported from pycryptodome.

How to install

sudo dnf upgrade --advisory=FEDORA-2018-913c225b49

This update has been submitted for testing by pghmcfc.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon filiperosset commented & provided feedback 2 years ago
karma

no regressions noted

User Icon mhayden commented & provided feedback 2 years ago
karma

Working for me.

User Icon cserpentis commented & provided feedback 2 years ago
karma

works for me

This update has reached the stable karma threshold and can be pushed to stable now if the maintainer wishes.

2 years ago

This update has been submitted for batched by pghmcfc.

2 years ago
User Icon danniel commented & provided feedback 2 years ago
karma

works

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
4
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1542313 CVE-2018-6594 python-crypto: Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext
0
0
BZ#1542314 CVE-2018-6594 python-crypto: Weak ElGamal key parameters in PublicKey/ElGamal.py allow attackers to obtain sensitive information by reading ciphertext [fedora-all]
0
0

Automated Test Results