AVG-1046 log

Package crypto++
Status Fixed
Severity High
Type private key recovery
Affected 8.2.0-1
Fixed 8.2.0-2
Current 8.7.0-1 [extra]
Ticket None
Created Sun Oct 13 14:31:28 2019
Issue Severity Remote Type Description
CVE-2019-14318 High Yes Private key recovery
A vulnerability has been found in the ECDSA/EdDSA implementation of crypto++ up to 8.2.0, allowing for practical recovery of the long-term private key.
Date Advisory Package Type
06 Dec 2019 ASA-201912-3 crypto++ private key recovery