公告ID: KYLIN-2019-12904
安全等级: 中等
产品: Kylin V3
发布日期: 2019年7月16日
CVE: CVE-2019-12904
CVSS3评分: 5.9
概述:
None 描述:
In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.) 系统版本:
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
libgcrypt
libgcrypt
libgcrypt
libgcrypt