Information on source package libcrypto++

Available versions

ReleaseVersion
jessie5.6.1-6+deb8u3
stretch5.6.4-7
buster5.6.4-8
bullseye8.4.0-1
bookworm8.6.0-2
sid8.6.0-2

Open issues

BugjessiestretchbusterbullseyebookwormsidDescription
CVE-2021-40530vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe ElGamal implementation in Crypto++ through 8.5 allows plaintext re ...
CVE-2019-14318vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedCrypto++ 8.3.0 and earlier contains a timing side channel in ECDSA sig ...
CVE-2017-9434vulnerable (no DSA)fixedfixedfixedfixedfixedCrypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read v ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormsidDescription
CVE-2016-7420vulnerablevulnerablevulnerablevulnerablevulnerablevulnerableCrypto++ (aka cryptopp) through 5.6.4 does not document the requiremen ...

Resolved issues

BugDescription
CVE-2016-9939Crypto++ (aka cryptopp and libcrypto++) 5.6.4 contained a bug in its A ...
CVE-2016-7544Crypto++ 5.6.4 incorrectly uses Microsoft's stack-based _malloca and _ ...
CVE-2016-3995The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and ...
CVE-2015-2141The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcr ...

Security announcements

DSA / DLADescription
DLA-766-1libcrypto++ - security update
DSA-3748-1libcrypto++ - security update
DLA-262-1libcrypto++ - security update
DSA-3296-1libcrypto++ - security update

Search for package or bug name: Reporting problems