SUSE-RU-2017:2346-1: moderate: Recommended update for libgcrypt
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Mon Sep 4 19:07:18 MDT 2017
SUSE Recommended Update: Recommended update for libgcrypt
______________________________________________________________________________
Announcement ID: SUSE-RU-2017:2346-1
Rating: moderate
References: #1043333 #1046659 #1047008
Affected Products:
SUSE Linux Enterprise Software Development Kit 12-SP3
SUSE Linux Enterprise Software Development Kit 12-SP2
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2
SUSE Linux Enterprise Server 12-SP3
SUSE Linux Enterprise Server 12-SP2
SUSE Linux Enterprise Desktop 12-SP3
SUSE Linux Enterprise Desktop 12-SP2
SUSE Container as a Service Platform ALL
OpenStack Cloud Magnum Orchestration 7
______________________________________________________________________________
An update that has three recommended fixes can now be
installed.
Description:
This update for libgcrypt fixes the following issues:
- libgcrypt stored an open file descriptor to the random device in a
static variable between invocations. gnome-keyring-daemon on
initialization reopened descriptors 0-2 with /dev/null which caused an
infinite loop when libgcrypt attempted to read from the random device
(bsc#1043333)
- Avoid seeding the DRBG during FIPS power-up selftests (bsc#1046659)
* don't call gcry_drbg_instantiate() in healthcheck sanity test to save
entropy
* turn off blinding for RSA decryption in selftests_rsa to avoid
allocation of a random integer
- fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping some
of the tests (bsc#1046659)
- dlsym returns PLT address on s390x, dlopen libgcrypt20.so before calling
dlsym (bsc#1047008)
Patch Instructions:
To install this SUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Software Development Kit 12-SP3:
zypper in -t patch SUSE-SLE-SDK-12-SP3-2017-1453=1
- SUSE Linux Enterprise Software Development Kit 12-SP2:
zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1453=1
- SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
zypper in -t patch SUSE-SLE-RPI-12-SP2-2017-1453=1
- SUSE Linux Enterprise Server 12-SP3:
zypper in -t patch SUSE-SLE-SERVER-12-SP3-2017-1453=1
- SUSE Linux Enterprise Server 12-SP2:
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1453=1
- SUSE Linux Enterprise Desktop 12-SP3:
zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2017-1453=1
- SUSE Linux Enterprise Desktop 12-SP2:
zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1453=1
- SUSE Container as a Service Platform ALL:
zypper in -t patch SUSE-CAASP-ALL-2017-1453=1
- OpenStack Cloud Magnum Orchestration 7:
zypper in -t patch SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1453=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt-devel-1.6.1-16.45.1
libgcrypt-devel-debuginfo-1.6.1-16.45.1
- SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 ppc64le s390x x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt-devel-1.6.1-16.45.1
libgcrypt-devel-debuginfo-1.6.1-16.45.1
- SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (aarch64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
libgcrypt20-hmac-1.6.1-16.45.1
- SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
libgcrypt20-hmac-1.6.1-16.45.1
- SUSE Linux Enterprise Server 12-SP3 (s390x x86_64):
libgcrypt20-32bit-1.6.1-16.45.1
libgcrypt20-debuginfo-32bit-1.6.1-16.45.1
libgcrypt20-hmac-32bit-1.6.1-16.45.1
- SUSE Linux Enterprise Server 12-SP2 (aarch64 ppc64le s390x x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
libgcrypt20-hmac-1.6.1-16.45.1
- SUSE Linux Enterprise Server 12-SP2 (s390x x86_64):
libgcrypt20-32bit-1.6.1-16.45.1
libgcrypt20-debuginfo-32bit-1.6.1-16.45.1
libgcrypt20-hmac-32bit-1.6.1-16.45.1
- SUSE Linux Enterprise Desktop 12-SP3 (x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-32bit-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
libgcrypt20-debuginfo-32bit-1.6.1-16.45.1
- SUSE Linux Enterprise Desktop 12-SP2 (x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-32bit-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
libgcrypt20-debuginfo-32bit-1.6.1-16.45.1
- SUSE Container as a Service Platform ALL (x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
- OpenStack Cloud Magnum Orchestration 7 (x86_64):
libgcrypt-debugsource-1.6.1-16.45.1
libgcrypt20-1.6.1-16.45.1
libgcrypt20-debuginfo-1.6.1-16.45.1
References:
https://bugzilla.suse.com/1043333
https://bugzilla.suse.com/1046659
https://bugzilla.suse.com/1047008
More information about the sle-updates
mailing list