Bug 43593

Summary: gnupg: Multiple issues (ES 3.2)
Product: UCS Reporter: Arvid Requate <requate>
Component: Security updatesAssignee: UCS maintainers <ucs-maintainers>
Status: CLOSED WONTFIX QA Contact: UCS maintainers <ucs-maintainers>
Severity: normal    
Priority: P5 CC: gohmann
Version: UCS 3.2Flags: requate: Patch_Available+
Target Milestone: ---   
Hardware: Other   
OS: Linux   
What kind of report is it?: Security Issue What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional): Security
Max CVSS v3 score: 4.8 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N)
Bug Depends on:    
Bug Blocks: 42102, 43592    

Description Arvid Requate univentionstaff 2017-02-21 00:34:58 CET 
+++ This bug was initially created as a clone of Bug #43592 +++

The patch attached to bug 43592 fixes:

* libgcrypt: PRNG output is predictable (CVE-2016-6313)
Comment 1 Stefan Gohmann univentionstaff 2017-06-16 20:36:04 CEST 
This issue has been filed against UCS 3. UCS 3 is out of the normal maintenance and many UCS components have vastly changed in UCS 4.

If this issue is still valid, please change the version to a newer UCS version otherwise this issue will be automatically closed in the next weeks.