[Bug 1190244] VUL-0: CVE-2021-40529: Botan,MozillaThunderbird: ElGamal implementation allows plaintext recovery
https://bugzilla.suse.com/show_bug.cgi?id=1190244 https://bugzilla.suse.com/show_bug.cgi?id=1190244#c7 Jason Sikes <jsikes@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|jsikes@suse.com |security-team@suse.de --- Comment #7 from Jason Sikes <jsikes@suse.com> --- There is nothing to do here for SLE-12. The version of Botan that we have in SLE-12: 1.10.9 already uses a large exponent. In a later version, the author changed to using a shorter exponent. The fix for this CVE is effectively to go back to using a large exponent. Sending back to security-team. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com