Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves one vulnerability and has 4 bug fixes can now be installed.. openSUSE security update: security update for leancrypto ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20783-1 Rating: moderate References: * bsc#1253654 * bsc#1254370 * bsc#1261382 * bsc#1262399 Cross-References: * CVE-2026-34610 CVSS scores: * CVE-2026-34610 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has 4 bug fixes can now be installed. Description: This update for leancrypto fixes the following issues Security issue: - CVE-2026-34610: The leancrypto library is a cryptographic library that exclusively contains only PQC-resistant cryptographic algorithms. Prior to version 1.7.1, lc_x509_extract_name_segment() casts size_t vlen to uint8_t when stori (bsc#1261382). Non security issues: - gnutls Illegal instruction lc_kyber_768_kem_dec_selftest (bsc#1253654). - gnutls: test pqc-hybrid-kx fails on Nehalem or older CPU (bsc#1254370). Changes for leancrypto: - Calculate the FIPS HMAC for the leancrypto and the leancrypto-fips libraries. (bsc#1262399) - Fix build on kernel 7.0 - Pick fix for ABI issue in AVX2 assembly for Curve448 causing test failures when building with GCC 16. - Update to 1.7.2: * Fix RDSEED counter * Process code by AI code checkers and apply suggested cosmetic fixes * Heap memory: always munlock all mlock'ed memory * Fix ChaCha20 on Apple compiled with XCode 26.4 * Fix a potential crasher with Base64 and applied various fixes reported * Add X.509 certificate signing request (CSR) generator and parser * ML-DSA: add lc_dilithium_pk_from_sk API to derive the PK from a given SK * SLH-DSA: add lc_sphincs_pk_from_sk API to derive the PK from a given SK * ML-KEM: add lc_kyber_pk_from_sk API to derive the PK from a given SK * AES-CT: fix non-aligned dataprocessing - reported * Apply suggestions from Claude code * X.509: Enforce path length restriction - Update to 1.7.1 * Offer a means to select the AES-C constant time / S-Box implementation via lc_init API * use the AES-C constant time implementation by default - it is about 3 times slower than the AES-C S-Box implementation, but more secure. As the leancrypto library is about secure by default, the CT implementation is just right. Furthermore, if a caller wants to have the faster AES-C S-Box, he can call lc_init(LC_INIT_AES_SBOX) at the beginning. * FIPS: mark only seeded DRBG instances as FIPS-approved * ASN.1: add lc_x509_cert_check_issuer_ca convenience function * Enable side-channel-resistant AES implementation (and thus enable respective Timecop tests) * Fix some side channel test failures (all failures are due to test case issues, and no real problems) * AARCH64: enable GCS support * Add PKCS#8 support for ML-DSA following RFC9881 including full support for the seed or full keys. The change adds OpenSSL interoperability testing as well. NOTE: The raw on-disk private key format that is generated with lc_x509_generate --create-keypair changed to comply with RFC9881. * Add PKCS#8 support for SLH-DSA. The change adds OpenSSL interoperability testing as well. NOTE: The raw on-disk private key format that is generated with lc_x509_generate --create-keypair changed to dump the raw key instead of wrapping it into a BIT STRING to comply with OpenSSL's format. * Provide full PKCS#7 interoperability with OpenSSL: OpenSSL artificially orders the parsing of the authenticated attributes. This implies that the message digest part of the authenticated attributes is parsed as last entry. This ordering is important for the signature generation and verification. Furthermore, for ML-DSA/SLH-DSA, the authenticated attributes are signed with the pure algorithm instead of the pre-hashed operation as suggested by RFC5652 section 9.2. * ML-KEM/DSA: add safety measures against compilers trying toreason about code they should not reason about. Derived from https://github.com/pq-code-package/ml[dsa|kem]-native/ * ML-DSA: reduce amount of duplicate code compilation suggested * ML-DSA: fix bug in poly_uniform which, however, is unlikely to be triggered * ChaCha20: fix crasher when assembler support is not compiled * Add AES constant time C implementation accessible with the lc_aes_*ct references. Yet, it is about 3 times slower than the default C implementation. Thus is is only provided if somebody truly relies on a constant time implementation. - Fix bsc#1254370, bsc#1253654 - AVX detection is wrong on older intel CPUs - Update to 1.6.0: * ASN.1: use stack for small generator for small use cases * X.509: Updates required to support the shim boot loader * X.509: add lc_gmtime to convert Epoch to time format * ASN.1: added to Linux kernel (for 64 bit systems only) * Added AES-GCM and AES-XTS * Availability: remove assert() calls throughout the code - in case of a self test error, disable the algorithm. Instead of using assert, apply a centrally managed test manager that stores the test status. This implies that some initalization APIs like lc_hash_init, lc_sym_init, lc_hmac_init are changed such that they return an error code if self tests failed. Thus, the version is now changed as this is considered to be an ABI change. Although this sounds heavy, the test manager is relatively small and the runtime state should be smaller than the old approach considering the old approach uses one global 32 bit integer per self test to maintain the state. This is now replaced with a set of 32 bit atomic integers that hold a 3-bit field for each algorithm. This change also adds the API call of lc_rerun_one_selftest which allows triggering the reruning of a self test for one given algorithm. * FIPS: Rearchitect integrity test control value generator: The build process now uses the host's objcopy to extract the ELF sections of interest into a separate file, use a build_machine compiled version ofsha3-256sum to generate the digest of it and reinsert it into the leancrypto-fips.so. This now allows cross-compilation with FIPS integrity test support. There is no functional change to leancrypto though. * Significant reduction of compilation units by almost half by not having global, but per-test compiled C files. * Linux kernel: add /proc/leancrypto * FIPS: Add negative testing support * Add SHAKE-512 and XDRBG-512 support * FIPS: Add FIPS indicator which implies that libleancrypto.so has the same functionality as libleancrypto-fips.so with the exception that the latter performs an integrity test. * ARMv9: fix BTI for ML-DSA - Don't strip debug symbols - Add Linux kernel module spec file Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-789=1 Package List: - openSUSE Leap 16.0: leancrypto-devel-1.7.2-160000.1.1 leancrypto-devel-static-1.7.2-160000.1.1 leancrypto-kmp-64kb-1.7.2_k6.12.0_160000.32-160000.1.1 leancrypto-kmp-default-1.7.2_k6.12.0_160000.32-160000.1.1 leancrypto-tools-1.7.2-160000.1.1 libleancrypto-fips1-1.7.2-160000.1.1 libleancrypto1-1.7.2-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-34610.html . openSUSE security update addresses major issues in leancrypto with several fixes and requires immediate user action.. openSUSE update, leancrypto, security patch, cyber threat, DoS incident. . Severity: Important. LinuxSecurity.com Team
Update to 3.6.4 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-d3585d3323 2025-07-06 01:10:23.941290+00:00 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 42 Version : 3.6.4 Release : 1.fc42 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: Update to 3.6.4 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2025 Morten Stevens - 3.6.4-1 - Update to 3.6.4 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-d3585d3323' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-a23b5f0783 2024-04-19 21:20:20.797379 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 40 Version : 2.28.8 Release : 1.fc40 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 1 2024 Morten Stevens - 2.28.8-1 - Update to 2.28.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272172 - CVE-2024-28960 mbedtls: Insecure handling of shared memory in PSA Crypto APIs https://bugzilla.redhat.com/show_bug.cgi?id=2272172 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-a23b5f0783' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-1249d56928 2024-04-17 02:11:07.454441 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 38 Version : 2.28.8 Release : 1.fc38 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: Update to 2.28.8 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 1 2024 Morten Stevens - 2.28.8-1 - Update to 2.28.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272172 - CVE-2024-28960 mbedtls: Insecure handling of shared memory in PSA Crypto APIs https://bugzilla.redhat.com/show_bug.cgi?id=2272172 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-1249d56928' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Update to 2.28.7 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.7 Security Advisories: -. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-c7f1c839ac 2024-02-22 02:22:22.545822 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 38 Version : 2.28.7 Release : 1.fc38 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: Update to 2.28.7 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.7 Security Advisories: - advisory-2024-01-1/ - advisory-2024-01-2/ -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 6 2024 Morten Stevens - 2.28.7-1 - Update to 2.28.7 * Tue Feb 6 2024 Morten Stevens - 2.28.5-4 - Disabled testing due to build issues with GCC 14 * Thu Jan 25 2024 Fedora Release Engineering - 2.28.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering - 2.28.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2261600 - CVE-2024-23170 CVE-2024-23775 mbedtls: multiple vulnerabilties [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2261600 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnfupgrade --advisory FEDORA-2024-c7f1c839ac' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
PyCryptodome could be made to expose sensitive information.. ========================================================================== Ubuntu Security Notice USN-6595-1 January 23, 2024 pycryptodome vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: PyCryptodome could be made to expose sensitive information. Software Description: - pycryptodome: Cryptographic Python library Details: It was discovered that PyCryptodome had a timing side-channel when performing OAEP decryption. A remote attacker could possibly use this issue to recover sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS: python3-pycryptodome 3.11.0+dfsg1-3ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6595-1 CVE-2023-52323 Package Information: https://launchpad.net/ubuntu/+source/pycryptodome/3.11.0+dfsg1-3ubuntu0.1 . Enhance your Ubuntu 22.04 LTS to rectify the PyCryptodome security flaw that threatens to reveal confidential information.. PyCryptodome Vulnerability, Ubuntu Security, Information Exposure. . Severity: Critical. LinuxSecurity.com Team
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-0352951853 2023-11-03 18:20:20.953521 -------------------------------------------------------------------------------- Name : mbedtls Product : Fedora 39 Version : 2.28.5 Release : 1.fc39 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. -------------------------------------------------------------------------------- Update Information: - Update to 2.28.5 - CVE-2023-43615 Release notes: TLS/mbedtls/releases/tag/mbedtls-2.28.5 Security Advisory: - tls.readthedocs.io/en/latest/security-advisories/mbedtls-security- advisory-2023-10-1/ -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 10 2023 Morten Stevens - 2.28.5-1 - Update to 2.28.5 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-0352951853' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
- Update to 2.28.2 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-3c4a525dcc 2023-01-13 01:20:10.116863 --------------------------------------------------------------------------------Name : mbedtls Product : Fedora 36 Version : 2.28.2 Release : 1.fc36 URL : https://www.trustedfirmware.org/projects/mbed-tls Summary : Light-weight cryptographic and SSL/TLS library Description : Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) applications with as little hassle as possible. --------------------------------------------------------------------------------Update Information: - Update to 2.28.2 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2 --------------------------------------------------------------------------------ChangeLog: * Fri Dec 16 2022 Benson Muite - 2.28.2-1 - Update to 2.28.2 - Update URLs --------------------------------------------------------------------------------References: [ 1 ] Bug #2155397 - CVE-2022-46392 CVE-2022-46393 mbedtls: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2155397 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-3c4a525dcc' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Get the latest Linux and open source security news straight to your inbox.