1
Candidate: CVE-2016-3995
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3995
5
http://www.openwall.com/lists/oss-security/2016/04/10/6
7
The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and
8
Rijndael::Dec::ProcessAndXorBlock in Crypto++ (aka cryptopp) before 5.6.4
9
may be optimized out by the compiler, which allows attackers to conduct
14
https://github.com/weidai11/cryptopp/issues/146
20
upstream_libcrypto++: released (5.6.3-6)
21
precise_libcrypto++: ignored (reached end-of-life)
22
precise/esm_libcrypto++: DNE (precise was needed)
23
trusty_libcrypto++: released (5.6.1-6+deb8u3build0.14.04.1)
24
vivid/stable-phone-overlay_libcrypto++: DNE
25
vivid/ubuntu-core_libcrypto++: DNE
26
wily_libcrypto++: ignored (reached end-of-life)
27
xenial_libcrypto++: needed
28
yakkety_libcrypto++: not-affected (5.6.3-8)
29
zesty_libcrypto++: not-affected
30
artful_libcrypto++: not-affected
31
bionic_libcrypto++: not-affected
32
devel_libcrypto++: not-affected