mirror of
https://git.yoctoproject.org/poky
synced 2026-07-03 11:13:39 +02:00
In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.) Reference: https://nvd.nist.gov/vuln/detail/CVE-2019-12904 Patches from:1374254c29daedbbb554a4c561aab1(From OE-Core rev: 37e390ff05b6a4509019db358ed496731d80cc51) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>