oss-sec mailing list archives
Re: Libgcrypt and GnuPG 1.4 RNG output prediction
From: Remi Gacogne <rgacogne () archlinux org>
Date: Wed, 17 Aug 2016 19:05:06 +0200
Hi, On 08/17/2016 06:58 PM, Solar Designer wrote:
<@rgacogne> @gnupg @solardiz The CVE number (CVE-2016-6316) seems to have been used to track another security issue rubygem-actionview, is that correct? There does in fact appear to be a CVE ID clash, with: http://www.openwall.com/lists/oss-security/2016/08/11/6
Apparently the correct CVE number is CVE-2016-6313: https://twitter.com/gnupg/status/765956493720055808
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- Libgcrypt and GnuPG 1.4 RNG output prediction Solar Designer (Aug 17)
- Re: Libgcrypt and GnuPG 1.4 RNG output prediction Remi Gacogne (Aug 17)
- Re: Libgcrypt and GnuPG 1.4 RNG output prediction Werner Koch (Aug 17)
- Re: Re: Libgcrypt and GnuPG 1.4 RNG output prediction Andrew Gallagher (Aug 18)
- Re: Libgcrypt and GnuPG 1.4 RNG output prediction Solar Designer (Aug 18)
- Re: Re: Libgcrypt and GnuPG 1.4 RNG output prediction Andrew Gallagher (Aug 18)