Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Fedora 24 FEDORA-2016-96b60bdb96 Critical Timing Attack Fix

fedora
Calendar Grey April 15, 2016
Dist Fedora Esm H88
Essential patch deployed to address timing vulnerability in cryptopp for Fedora 24. Security update accessible via yum for compliance adherence.
- Fix for CVE-2016-3995

Summary

Crypto++ Library is a free C++ class library of cryptographic schemes.

See for a list of supported algorithms.

One purpose of Crypto++ is to act as a repository of public domain

(not copyrighted) source code. Although the library is copyrighted as a

compilation, the individual files in it are in the public domain.

Update Information:

- Fix for CVE-2016-3995

Change Log

References


[ 1 ] Bug #1325947 - CVE-2016-3995 cryptopp: bogus protection from timing attacks https://bugzilla.redhat.com/show_bug.cgi?id=1325947

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update cryptopp' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cryptopp
Product: Fedora 24
Version: 5.6.3
Release: 3.fc24
URL: Summary : C++ class library of cryptographic schemes

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.