Bug 27422 - python-crypto: Unsichere Generierung von ElGamal-Keys (2.4)
Summary: python-crypto: Unsichere Generierung von ElGamal-Keys (2.4)
Status: CLOSED WONTFIX
Alias: None
Product: UCS
Classification: Unclassified
Component: Security updates
Version: UCS 3.0
Hardware: Other Linux
: P2 normal
Target Milestone: UCS 2.4-secX
Assignee: Security maintainers
QA Contact:
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-06-01 10:51 CEST by Moritz Muehlenhoff
Modified: 2019-04-11 19:23 CEST (History)
0 users

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Moritz Muehlenhoff univentionstaff 2012-06-01 10:51:31 CEST 
CVE-2012-2417

Aufgrund fehlerhafter Bearbeitung der Eingaben ist der ElGamal-Keyspace deutlich verkleinert.
Comment 1 Moritz Muehlenhoff univentionstaff 2013-10-18 08:32:40 CEST 
In multi-threaded application, the PRNG isn't correctly reseeded in some circumstances (CVE-2013-1445)
Comment 2 Moritz Muehlenhoff univentionstaff 2014-01-02 07:35:57 CET 
The maintenance with bug and security fixes for UCS 2.4-x has ended on the 31st of December 2013. 

Customers still on UCS 2.4-x are encouraged to update to UCS 3.x. Please contact
your partner or Univention for any questions.