It was discovered that Nettle incorrectly handled RSA decryption. A remote attacker could possibly use this issue to cause Nettle to crash, resulting in a denial of service. (CVE-2021-3580)
It was discovered that Nettle incorrectly handled certain padding oracles. A remote attacker could possibly use this issue to perform a variant of the Bleichenbacher attack. This issue only affected Ubuntu 18.04 LTS. (CVE-2018-16869)
{ "availability": "No subscription required", "binaries": [ { "nettle-dev": "3.4.1-0ubuntu0.18.04.1", "nettle-bin": "3.4.1-0ubuntu0.18.04.1", "libhogweed4-dbgsym": "3.4.1-0ubuntu0.18.04.1", "libnettle6": "3.4.1-0ubuntu0.18.04.1", "libhogweed4": "3.4.1-0ubuntu0.18.04.1", "libnettle6-dbgsym": "3.4.1-0ubuntu0.18.04.1", "nettle-bin-dbgsym": "3.4.1-0ubuntu0.18.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "nettle-dev": "3.5.1+really3.5.1-2ubuntu0.2", "nettle-bin": "3.5.1+really3.5.1-2ubuntu0.2", "libnettle7-dbgsym": "3.5.1+really3.5.1-2ubuntu0.2", "libhogweed5": "3.5.1+really3.5.1-2ubuntu0.2", "libnettle7": "3.5.1+really3.5.1-2ubuntu0.2", "nettle-bin-dbgsym": "3.5.1+really3.5.1-2ubuntu0.2", "libhogweed5-dbgsym": "3.5.1+really3.5.1-2ubuntu0.2" } ] }