Information on source package nettle

Available versions

ReleaseVersion
stretch3.3-1
buster3.4.1-1
buster (security)3.4.1-1+deb10u1
bullseye3.7.3-1
sid3.7.3-1

Open issues

BugstretchbusterbullseyesidDescription
CVE-2021-20305vulnerable (no DSA, postponed)fixedfixedfixedA flaw was found in Nettle in versions before 3.7.2, where several Net ...
CVE-2021-3580vulnerablefixedfixedfixedRemote crash in RSA decryption via manipulated ciphertext
CVE-2018-16869vulnerable (no DSA)fixedfixedfixedA Bleichenbacher type side-channel based padding oracle attack was fou ...

Resolved issues

BugDescription
CVE-2016-6489The RSA and DSA decryption code in Nettle makes it easier for attacker ...
CVE-2015-8805The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not p ...
CVE-2015-8804x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle ...
CVE-2015-8803The ecc_256_modp function in ecc-256.c in Nettle before 3.2 does not p ...

Security announcements

DSA / DLADescription
DSA-4933-1nettle - security update
DLA-593-1nettle - security update

Search for package or bug name: Reporting problems