VulnerableCode Package Details - pkg:rpm/redhat/nettle@2.7.1-8?arch=el7

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/nettle@2.7.1-8?arch=el7

Essentials
History (4)

purl	pkg:rpm/redhat/nettle@2.7.1-8?arch=el7

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.4

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-4faz-8fkq-1yey Aliases: CVE-2015-8803	nettle: secp256 calculation bug	There are no reported fixed by versions.
VCID-g7x1-qtff-8qb6 Aliases: CVE-2016-6489	A cache-related side channel vulnerability was found in nettle which might allow an attacker to obtain sensitive information.	There are no reported fixed by versions.
VCID-ka7g-uw8s-7fdv Aliases: CVE-2015-8805	nettle: secp256 calculation bug	There are no reported fixed by versions.
VCID-py38-zkxu-u3ey Aliases: CVE-2015-8804	nettle: miscalculations on secp384 curve	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:37:59.273691+00:00	RedHat Importer	Affected by	VCID-ka7g-uw8s-7fdv	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8805.json	38.0.0
2026-04-01T14:37:59.248316+00:00	RedHat Importer	Affected by	VCID-py38-zkxu-u3ey	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8804.json	38.0.0
2026-04-01T14:37:59.224182+00:00	RedHat Importer	Affected by	VCID-4faz-8fkq-1yey	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8803.json	38.0.0
2026-04-01T14:36:22.608818+00:00	RedHat Importer	Affected by	VCID-g7x1-qtff-8qb6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6489.json	38.0.0