USN-5080-2: Libgcrypt vulnerabilities
16 September 2021
Libgcrypt could be made to expose sensitive information.
- libgcrypt20 - LGPL Crypto library
USN-5080-1 fixed several vulnerabilities in Libgcrypt. This update provides
the corresponding update for Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that Libgcrypt incorrectly handled ElGamal encryption. An
attacker could possibly use this issue to recover sensitive information.
- USN-5080-1: libgcrypt11-dev, libgcrypt20-dev, libgcrypt20, libgcrypt-mingw-w64-dev, libgcrypt20-doc