{"affected":[{"ecosystem_specific":{"binaries":[{"libgcrypt-devel":"1.8.2-6.3.1","libgcrypt20":"1.8.2-6.3.1","libgcrypt20-32bit":"1.8.2-6.3.1","libgcrypt20-hmac":"1.8.2-6.3.1","libgcrypt20-hmac-32bit":"1.8.2-6.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15","name":"libgcrypt","purl":"pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.2-6.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libgcrypt fixes the following issue:\n\nThe following security issue was fixed:\n\n- CVE-2018-0495: Fixed a novel side-channel attack, by enabling blinding for\n  ECDSA signatures (bsc#1097410)\n","id":"SUSE-SU-2018:1993-1","modified":"2018-07-19T07:28:43Z","published":"2018-07-19T07:28:43Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20181993-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1097410"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-0495"}],"related":["CVE-2018-0495"],"summary":"Security update for libgcrypt","upstream":["CVE-2018-0495"]}