Publishing details

Removed from disk on 2018-06-20.
Removal requested on 2018-06-20.
Superseded on 2018-06-19 by libgcrypt20 - 1.6.5-2ubuntu0.5
Published on 2017-07-03
Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

libgcrypt20 (1.6.5-2ubuntu0.3) xenial-security; urgency=medium

  * SECURITY UPDATE: full RSA key recovery via side-channel attack
    - debian/patches/CVE-2017-7526-1.patch: simplify loop in mpi/mpi-pow.c.
    - debian/patches/CVE-2017-7526-2.patch: use same computation for square
      and multiply in mpi/mpi-pow.c.
    - debian/patches/CVE-2017-7526-3.patch: add exponent blinding in
      cipher/rsa.c.
    - debian/patches/CVE-2017-7526-4.patch: add free to cipher/rsa.c.
    - debian/patches/CVE-2017-7526-5.patch: add free to cipher/rsa.c.
    - CVE-2017-7526
  * SECURITY UPDATE: EdDSA key recovery via side-channel attack
    - debian/patches/CVE-2017-9526-1.patch: store EdDSA session key in
      secure memory in cipher/ecc-eddsa.c.
    - debian/patches/CVE-2017-9526-2.patch: fix SEGV and stat calculation
      src/secmem.c.
    - CVE-2017-9526

 -- Marc Deslauriers <email address hidden>  Mon, 03 Jul 2017 08:16:37 -0400

Available diffs

diff from 1.6.5-2ubuntu0.2 to 1.6.5-2ubuntu0.3 (5.4 KiB)

Builds

Package files

libgcrypt11-dev_1.5.4-3+really1.6.5-2ubuntu0.3_all.deb (6.8 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_amd64.ddeb (466.1 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_arm64.ddeb (454.9 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_armhf.ddeb (455.4 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_i386.ddeb (405.2 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_powerpc.ddeb (439.8 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_ppc64el.ddeb (547.1 KiB)
libgcrypt20-dbgsym_1.6.5-2ubuntu0.3_s390x.ddeb (433.5 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_amd64.ddeb (26.4 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_arm64.ddeb (27.8 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_armhf.ddeb (27.1 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_i386.ddeb (25.0 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_powerpc.ddeb (26.1 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_ppc64el.ddeb (32.0 KiB)
libgcrypt20-dev-dbgsym_1.6.5-2ubuntu0.3_s390x.ddeb (25.1 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_amd64.deb (371.0 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_arm64.deb (307.9 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_armhf.deb (342.4 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_i386.deb (358.8 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_powerpc.deb (335.9 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_ppc64el.deb (401.7 KiB)
libgcrypt20-dev_1.6.5-2ubuntu0.3_s390x.deb (333.7 KiB)
libgcrypt20-doc_1.6.5-2ubuntu0.3_all.deb (722.1 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_amd64.ddeb (466.2 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_arm64.ddeb (454.9 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_armhf.ddeb (455.0 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_i386.ddeb (405.1 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_powerpc.ddeb (440.0 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_ppc64el.ddeb (547.1 KiB)
libgcrypt20-udeb-dbgsym_1.6.5-2ubuntu0.3_s390x.ddeb (433.5 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_amd64.udeb (299.3 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_arm64.udeb (231.5 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_armhf.udeb (269.4 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_i386.udeb (284.5 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_powerpc.udeb (268.5 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_ppc64el.udeb (318.7 KiB)
libgcrypt20-udeb_1.6.5-2ubuntu0.3_s390x.udeb (259.0 KiB)
libgcrypt20_1.6.5-2ubuntu0.3.debian.tar.xz (35.6 KiB)
libgcrypt20_1.6.5-2ubuntu0.3.dsc (2.6 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_amd64.deb (329.8 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_arm64.deb (260.3 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_armhf.deb (298.2 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_i386.deb (313.0 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_powerpc.deb (297.4 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_ppc64el.deb (347.4 KiB)
libgcrypt20_1.6.5-2ubuntu0.3_s390x.deb (288.5 KiB)
libgcrypt20_1.6.5.orig.tar.bz2 (2.4 MiB)