There are 5 open security issues in bookworm.
4 issues left for the package maintainer to handle:
- CVE-2022-48570:
(postponed; to be fixed through a stable update)
Crypto++ through 8.4 contains a timing side channel in ECDSA signature generation. Function FixedSizeAllocatorWithCleanup could write to memory outside of the allocation if the allocated memory was not 16-byte aligned. NOTE: this issue exists because the CVE-2019-14318 fix was intentionally removed for functionality reasons.
- CVE-2023-50979:
(postponed; to be fixed through a stable update)
Crypto++ (aka cryptopp) through 8.9.0 has a Marvin side channel during decryption with PKCS#1 v1.5 padding.
- CVE-2023-50981:
(postponed; to be fixed through a stable update)
ModularSquareRoot in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (infinite loop) via crafted DER public-key data associated with squared odd numbers, such as the square of 268995137513890432434389773128616504853.
- CVE-2024-28285:
(postponed; to be fixed through a stable update)
A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.
You can find information about how to handle these issues in the security team's documentation.
1 ignored issue:
- CVE-2023-50980:
gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.
![[bug history graph]](https://qa.debian.org/data/bts/graphs/libc/libcrypto++.png){kind=link}