All errata/sisyphus/ALT-PU-2015-2204-1
ALT-PU-2015-2204-1

Package update libbotan in branch sisyphus

Version1.10.9-alt1
Task#155447
Published2015-12-28
Max severityHIGH
Severity:

Closed issues (1)

CVE-2014-9742
HIGH7.5

The Miller-Rabin primality check in Botan before 1.10.8 and 1.11.x before 1.11.9 improperly uses a single random base, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a DH group.

Published: 2016-05-13Modified: 2025-04-12
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References