Vulnerability Details

Feed Type Docker
Title CVE-2019-12904
Description In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.)

Severity: Medium
More Information:

Namespace: debian:10
Feature: libgcrypt20
Feature Version: 1.8.4-5
Fixed By Version:
Container Layer Hash sha256:bf59529304463f62efa7179fa1a32718a611528cc4ce9f30c0d1bbc6724ec3fb
Source Clair
Assessment Unassessed by unknown on


There are no comments for this vulnerability.