A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges.
{ "binaries": [ { "binary_version": "5.6.1-6+deb8u3ubuntu0.1~esm1", "binary_name": "libcrypto++-dev" }, { "binary_version": "5.6.1-6+deb8u3ubuntu0.1~esm1", "binary_name": "libcrypto++-utils" }, { "binary_version": "5.6.1-6+deb8u3ubuntu0.1~esm1", "binary_name": "libcrypto++9" } ] }