libgcrypt (SL6, SL7)

By Scientific Linux Team on November 8, 2016

Synopsis: Moderate: libgcrypt security update
Advisory ID: SLSA-2016:2674-1
Issue Date: 2016-11-08
CVE Numbers: CVE-2016-6313

Security Fix(es):

* A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number
Generator). An attacker able to obtain the first 580 bytes of the PRNG
output could predict the following 20 bytes. (CVE-2016-6313)

SL6
x86_64
libgcrypt-1.4.5-12.el6_8.i686.rpm
libgcrypt-1.4.5-12.el6_8.x86_64.rpm
libgcrypt-debuginfo-1.4.5-12.el6_8.i686.rpm
libgcrypt-debuginfo-1.4.5-12.el6_8.x86_64.rpm
libgcrypt-devel-1.4.5-12.el6_8.i686.rpm
libgcrypt-devel-1.4.5-12.el6_8.x86_64.rpm
i386
libgcrypt-1.4.5-12.el6_8.i686.rpm
libgcrypt-debuginfo-1.4.5-12.el6_8.i686.rpm
libgcrypt-devel-1.4.5-12.el6_8.i686.rpm

– Scientific Linux Development Team