Mandriva Linux Security Advisory 2013-120 - PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers to conduct brute force attacks to obtain the private key. Note: any ElGamal keys that have previously been generated by PyCrypto should be regenerated after installing this update.
6c5ced1cb976616b44a9b19f8d6c624360fe034c06be3fdeeb2c1cd174c8a0f9Mandriva Linux Security Advisory 2012-117 - PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers to conduct brute force attacks to obtain the private key. The updated packages have been patched to correct this issue.
a257bef09bc054b9c2ddf00af72cb709c6daf86ed9863e285ba7b71a0ed7c536Ubuntu Security Notice 1484-1 - It was discovered that PyCrypto produced inappropriate prime numbers when generating ElGamal keys. An attacker could use this flaw to facilitate brute-forcing of ElGamal encryption keys.
04fbced1a91721f7ab5f380ac1b24b6b95bb3cc42c528814abcc82b70cc1f2ddGentoo Linux Security Advisory 201206-23 - PyCrypto generates weak ElGamal keys. Versions less than 2.6 are affected.
14546806126e183ad80b1ab1d5a94616b305357e865f36bf6b75eb0ea38f9a96Debian Linux Security Advisory 2502-1 - It was discovered that that the ElGamal code in PythonCrypto, a collection of cryptographic algorithms and protocols for Python used insecure insufficient prime numbers in key generation, which lead to a weakened signature or public key space, allowing easier brute force attacks on such keys.
6d4508421551948092f3a47c494a7261e2fff7ccbfc0297c1626d54727c95efa
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed