This page was not yet optimized for use on mobile
devices.
Oracle Linux 8 libgcrypt Cryptographic Module
Known vulnerabilities detected
Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.Certificate #4232
Webpage information
Security policy
Symmetric Algorithms
AES, AES-128, AES-192, AES-256, Twofish, Serpent, CAST5, RC2, DES, Triple-DES, TDEA, ChaCha20, Salsa20, IDEA, Blowfish, Camellia, SEED, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, CMACAsymmetric Algorithms
ECDSA, EdDSA, DSAHash functions
SHA-1, SHA1, SHA-224, SHA-256, SHA-384, SHA-512, SHA3-224, SHA3-256, SHA3-384, SHA3-512, Blake2, MD4, MD5, RIPEMD, PBKDFSchemes
MACRandomness
DRBG, RNGLibraries
libgcryptElliptic Curves
P-256, P-384, P-521, P-224Block cipher modes
ECB, CBC, CTR, CFB, OFB, CCM, XTSSecurity level
Level 1, level 1Side-channel analysis
timing attacksStandards
FIPS 140-2, FIPS 140, FIPS PUB 140-2, FIPS 186-4, FIPS 180-4, FIPS 197, FIPS 198-1, NIST SP 800-90B, SP 800-90A, SP 800-90B, SP 800-133, SP 800-38F, SP 800-56B, SP 800-132, SP 800-67, SP 800-38E, SP 800-38A, SP 800-38B, SP 800-38C, SP 800-89, PKCS 1, PKCS #1, RFC 4880, RFC 5649File metadata
| Author | chris brych |
|---|---|
| Creation date | D:20220711184406+00'00' |
| Modification date | D:20220711184406+00'00' |
| Pages | 32 |
| Creator | Microsoft Word |
References
Outgoing- 256 - historical - N90i Secure Metering Moddule (SMM)
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2021-2464 | HIGH | 7.8 | 5.9 | 24.09.2021 | ||
| CVE-2021-3551 | HIGH | 7.8 | 5.9 | 16.02.2022 | ||
| CVE-2022-21499 | MEDIUM | 4.6 | 6.4 | 09.06.2022 | ||
| CVE-2022-21504 | LOW | 2.1 | 2.9 | 14.06.2022 | ||
| CVE-2022-21505 | MEDIUM | 6.7 | 5.9 | 24.12.2024 | ||
| CVE-2023-22024 | MEDIUM | 5.5 | 3.6 | 20.09.2023 | ||
| CVE-2025-4598 | MEDIUM | 4.7 | 3.6 | 30.05.2025 | ||
Showing 5 out of 7.
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4232,
"dgst": "7f424708103a507c",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"KTS#A1787",
"DRBG#A1785",
"DRBG#A1787",
"SHA-3#A1786",
"HMAC#A1785",
"PBKDF#A1788",
"DSA#A1788",
"DSA#A1786",
"HMAC#A1786",
"RSA#A1786",
"KTS-RSA#A1787",
"RSA#A1788",
"SHS#A1785",
"KTS#A1785",
"ECDSA#A1787",
"DSA#A1789",
"HMAC#A1784",
"AES#A1787",
"HMAC#A1789",
"PBKDF#A1787",
"HMAC#A1787",
"ECDSA#A1788",
"KTS#A1788",
"ECDSA#A1786",
"SHS#A1789",
"Triple-DES#A1786",
"AES#A1785",
"SHS#A1788",
"PBKDF#A1785",
"AES#A1786",
"DRBG#A1789",
"KTS-RSA#A1788",
"KTS#A1786",
"SHS#A1784",
"RSA#A1785",
"ECDSA#A1785",
"DRBG#A1788",
"DRBG#A1786",
"AES#A1788",
"PBKDF#A1789",
"ECDSA#A1789",
"RSA#A1787",
"KTS-RSA#A1785",
"KTS-RSA#A1789",
"PBKDF#A1786",
"SHA-3#A1789",
"SHS#A1787",
"KTS-RSA#A1786",
"SHS#A1786",
"DSA#A1787",
"RSA#A1789",
"HMAC#A1788",
"SHA-3#A1787",
"DSA#A1785"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:o:oracle:linux:8:-:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"8"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"256"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"256"
]
}
},
"policy_prunned_references": {
"_type": "Set",
"elements": [
"256"
]
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2025-4598",
"CVE-2023-22024",
"CVE-2021-2464",
"CVE-2021-3551",
"CVE-2022-21505",
"CVE-2022-21504",
"CVE-2022-21499"
]
},
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 8
},
"EdDSA": {
"EdDSA": 5
}
},
"FF": {
"DSA": {
"DSA": 14
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 8
},
"CCM": {
"CCM": 5
},
"CFB": {
"CFB": 3
},
"CTR": {
"CTR": 9
},
"ECB": {
"ECB": 6
},
"OFB": {
"OFB": 6
},
"XTS": {
"XTS": 9
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"libgcrypt": {
"libgcrypt": 55
}
},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 10,
"P-256": 22,
"P-384": 20,
"P-521": 20
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 1,
"Certificate 256": 1
}
},
"fips_certlike": {
"Certlike": {
"AES (128": 1,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4,
"Certificate SHS": 1,
"HMAC- SHA-1": 5,
"HMAC-SHA-1": 14,
"HMAC-SHA-224": 12,
"HMAC-SHA-256": 26,
"HMAC-SHA-384": 12,
"HMAC-SHA-512": 22,
"PKCS #1": 2,
"PKCS 1": 30,
"SHA- 256": 19,
"SHA-1": 29,
"SHA-224": 42,
"SHA-256": 29,
"SHA-384": 36,
"SHA-512": 41,
"SHA1": 5,
"SHA2-224": 5,
"SHA2-256": 5,
"SHA2-384": 5,
"SHA2-512": 5,
"SHA3-224": 10,
"SHA3-256": 13,
"SHA3-384": 8,
"SHA3-512": 8
}
},
"fips_security_level": {
"Level": {
"Level 1": 3,
"level 1": 2
}
},
"hash_function": {
"BLAKE": {
"Blake2": 2
},
"MD": {
"MD4": {
"MD4": 1
},
"MD5": {
"MD5": 1
}
},
"PBKDF": {
"PBKDF": 14
},
"RIPEMD": {
"RIPEMD": 1
},
"SHA": {
"SHA1": {
"SHA-1": 29,
"SHA1": 5
},
"SHA2": {
"SHA-224": 42,
"SHA-256": 29,
"SHA-384": 36,
"SHA-512": 41
},
"SHA3": {
"SHA3-224": 13,
"SHA3-256": 13,
"SHA3-384": 8,
"SHA3-512": 8
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 20
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {
"SCA": {
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140": 4,
"FIPS 140-2": 20,
"FIPS 180-4": 1,
"FIPS 186-4": 3,
"FIPS 197": 1,
"FIPS 198-1": 1,
"FIPS PUB 140-2": 2
},
"NIST": {
"NIST SP 800-90B": 2,
"SP 800-132": 5,
"SP 800-133": 2,
"SP 800-38A": 1,
"SP 800-38B": 1,
"SP 800-38C": 1,
"SP 800-38E": 2,
"SP 800-38F": 2,
"SP 800-56B": 1,
"SP 800-67": 1,
"SP 800-89": 1,
"SP 800-90A": 7,
"SP 800-90B": 2
},
"PKCS": {
"PKCS #1": 1,
"PKCS 1": 15
},
"RFC": {
"RFC 4880": 2,
"RFC 5649": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 21,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4
},
"CAST": {
"CAST5": 2
},
"RC": {
"RC2": 2
},
"Serpent": {
"Serpent": 2
},
"Twofish": {
"Twofish": 2
}
},
"DES": {
"3DES": {
"TDEA": 1,
"Triple-DES": 11
},
"DES": {
"DES": 5
}
},
"constructions": {
"MAC": {
"CMAC": 7,
"HMAC": 15,
"HMAC-SHA-224": 6,
"HMAC-SHA-256": 13,
"HMAC-SHA-384": 6,
"HMAC-SHA-512": 11
}
},
"djb": {
"ChaCha": {
"ChaCha20": 2
},
"Salsa": {
"Salsa20": 2
}
},
"miscellaneous": {
"Blowfish": {
"Blowfish": 2
},
"Camellia": {
"Camellia": 2
},
"IDEA": {
"IDEA": 2
},
"SEED": {
"SEED": 2
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "chris brych",
"/CreationDate": "D:20220711184406+00\u002700\u0027",
"/Creator": "Microsoft Word",
"/ModDate": "D:20220711184406+00\u002700\u0027",
"pdf_file_size_bytes": 699985,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.oracle.com/",
"http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf",
"http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14285",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14290",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf",
"http://csrc.nist.gov/publications/fips/fips198%201/FIPS-198%201_final.pdf",
"http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
"http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
"http://www.ietf.org/rfc/rfc3447.txt",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=34394",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14289",
"http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
"http://csrc.nist.gov/publications/fips/fips180-4/fips%20180-4.pdf",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14286",
"http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38b.pdf",
"http://csrc.nist.gov/publications/nistpubs/800-67/SP800-67.pdf",
"http://www.ietf.org/rfc/rfc5649.txt",
"http://csrc.nist.gov/publications/nistpubs/800-131A/sp800-131A.pdf",
"http://csrc.nist.gov/publications/nistpubs/800-89/SP-800-89_November2006.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38e.pdf",
"https://yum.oracle.com/repo/OracleLinux/OL8/4/security/validation/aarch64/getPackage/libgcrypt-1.8.5-4.0.1.el8.aarch64.rpm",
"https://yum.oracle.com/repo/OracleLinux/OL8/4/security/validation/x86_64/getPackage/libgcrypt-1.8.5-4.0.1.el8.x86_64.rpm",
"https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=14288"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 32
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "aa2ffde05c6d777d9beadfb213a15d0feb138aae8a4ec7d51886f76cab139a01",
"policy_txt_hash": "3b8ce57642be07c5c06f02377c846ef9c1a21bdc357f6b2ba3010ae53ed3b3ef"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2022_010622_0641_signed.pdf",
"date_sunset": "2026-09-21",
"description": "The Oracle Linux 8 libgcrypt Cryptographic Module is a software library implementing general purpose cryptographic algorithms.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical Security: N/A",
"Design Assurance: Level 3"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Oracle Linux 8 libgcrypt Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": "R8-8.4.0",
"tested_conf": [
"Oracle Linux 8.4 64 bit running on Oracle Server A1-2C with Ampere(R) Altra(R) Neoverse-N1 with PAA",
"Oracle Linux 8.4 64 bit running on Oracle Server A1-2C with Ampere(R) Altra(R) Neoverse-N1 without PAA (single-user mode)",
"Oracle Linux 8.4 64 bit running on Oracle Server E1-2C with AMD EPYC(TM) 7551 with PAA",
"Oracle Linux 8.4 64 bit running on Oracle Server E1-2C with AMD EPYC(TM) 7551 without PAA",
"Oracle Linux 8.4 64 bit running on Oracle Server X7-2C with Intel(R) Xeon(R) Platinum 8167M with PAA",
"Oracle Linux 8.4 64 bit running on Oracle Server X7-2C with Intel(R) Xeon(R) Platinum 8167M without PAA"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2022-05-23",
"lab": "atsec information security corporation",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2022-07-15",
"lab": "atsec information security corporation",
"validation_type": "Update"
}
],
"vendor": "Oracle Corporation",
"vendor_url": "http://www.oracle.com"
}
}