Stay Secure with the Latest Linux Advisories

security advisorymoderatesecurity update

Scientific Linux SL6.x: SLSA-2016:2674-1 Moderate Libgcrypt Update

Moderate: libgcrypt security update. Date: Tue, 8 Nov 2016 21:21:42 -0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Connie Sieh Subject: Security ERRATA Moderate: libgcrypt on SL6.x i386/x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Moderate: libgcrypt security update Advisory ID: SLSA-2016:2674-1 Issue Date: 2016-11-08 CVE Numbers: CVE-2016-6313 -- Security Fix(es): * A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number Generator). An attacker able to obtain the first 580 bytes of the PRNG output could predict the following 20 bytes. (CVE-2016-6313) -- SL6 x86_64 libgcrypt-1.4.5-12.el6_8.i686.rpm libgcrypt-1.4.5-12.el6_8.x86_64.rpm libgcrypt-debuginfo-1.4.5-12.el6_8.i686.rpm libgcrypt-debuginfo-1.4.5-12.el6_8.x86_64.rpm libgcrypt-devel-1.4.5-12.el6_8.i686.rpm libgcrypt-devel-1.4.5-12.el6_8.x86_64.rpm i386 libgcrypt-1.4.5-12.el6_8.i686.rpm libgcrypt-debuginfo-1.4.5-12.el6_8.i686.rpm libgcrypt-devel-1.4.5-12.el6_8.i686.rpm - Scientific Linux Development Team . A significant libgcrypt security revision tackles architectural vulnerabilities in Scientific Linux SL6.x, impacting the reliability of the PRNG.. Scientific Linux Security, libgcrypt Update, PRNG Design Flaw. . LinuxSecurity.com Team

Nov 08, 2016 Scientific Linux