Bug 1212708 - VUL-0: CVE-2023-36660: libnettle: memory corruption during OCB encryption of larger messages
Summary: VUL-0: CVE-2023-36660: libnettle: memory corruption during OCB encryption of ...
Status: RESOLVED DUPLICATE of bug 1212112
Alias: None
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Pedro Monreal Gonzalez
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/370462/
Whiteboard: CVSSv3.1:SUSE:CVE-2023-36660:6.1:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2023-06-26 07:42 UTC by Carlos López
Modified: 2023-06-26 08:26 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Pedro Monreal Gonzalez 2023-06-26 08:01:46 UTC 
This was submitted in bsc#1212112 but there was no CVE assigned to it yet. I'll add the CVE number to the changelog entry in a moment. I think this bug can be closed as duplicate and modify the other bug accordingly, would that be fine? TIA.
Comment 2 Carlos López 2023-06-26 08:21:25 UTC 
(In reply to Pedro Monreal Gonzalez from comment #1)
> This was submitted in bsc#1212112 but there was no CVE assigned to it yet.
> I'll add the CVE number to the changelog entry in a moment. I think this bug
> can be closed as duplicate and modify the other bug accordingly, would that
> be fine? TIA.

We would also need a submission for SUSE:ALP:Source:Standard:1.0
Comment 3 Pedro Monreal Gonzalez 2023-06-26 08:25:21 UTC 
Right, I'll submit in a moment.
Comment 4 Carlos López 2023-06-26 08:26:57 UTC 
Setting as duplicate

*** This bug has been marked as a duplicate of bug 1212112 ***