CRITICAL9.8CVE-2024-28285A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-r… from 0
HIGH7.5CVE-2023-50981ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER pu… from 0
HIGH7.5CVE-2023-50980gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data… from 0
HIGH7.5Crypto++ through 8.4 contains a timing side channel in ECDSA signature generation.
from 0
HIGH7.5The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec::ProcessAndXorBlock in Crypto++ (aka cryptopp) before 5…
from 0, < 5.6.3-6
HIGH7.5libcrypto++ - security update
from 0, < 5.6.1-6+deb8u3
HIGH7.5libcrypto++ - security update
from 0, < 5.6.4-5
HIGH7.5libcrypto++ - security update
from 0, < 5.6.1-6+deb7u3
MEDIUM5.9Crypto++ (aka cryptopp) through 8.9.0 has a Marvin side channel during decryption with PKCS#1 v1.5 padding.
from 0
MEDIUM5.9The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptographic librarie…
from 0
MEDIUM5.9Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation.
from 0, < 5.6.4-9
MEDIUM5.9Crypto++ (aka cryptopp) through 5.6.4 does not document the requirement for a compile-time NDEBUG definition disabling the many assert call…
from 0
MEDIUM5.3Crypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read vulnerability in zinflate.cpp in the Inflator filter.
from 0, < 5.6.4-7
—libcrypto++ - security update
from 0, < 5.6.0-6+deb6u1
—libcrypto++ - security update
from 0, < 5.6.1-7
—libcrypto++ - security update
from 0, < 5.6.1-6+deb7u1