openSUSE Security Update : libcryptopp (openSUSE-2015-504)
Medium Nessus Plugin ID 84888
SynopsisThe remote openSUSE host is missing a security update.
Descriptionlibcryptopp was updated to fix one security issue.
This security issue was fixed :
- CVE-2015-2141: The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 did not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allowed remote attackers to obtain private keys via a timing attack (bsc#936435).
SolutionUpdate the affected libcryptopp packages.