vulnerability
SUSE: CVE-2021-3345: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Jan 29, 2021 | Oct 26, 2022 | Oct 26, 2022 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Jan 29, 2021
Added
Oct 26, 2022
Modified
Oct 26, 2022
Description
_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a large count value. It is recommended to upgrade to 1.9.1 or later.
Solutions
suse-upgrade-libgcrypt-develsuse-upgrade-libgcrypt20suse-upgrade-libgcrypt20-32bitsuse-upgrade-libgcrypt20-hmacsuse-upgrade-libgcrypt20-hmac-32bit
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.