This page was not yet optimized for use on mobile devices.
Oracle Linux 9 libgcrypt Cryptographic Module
This certificate has known related CVEs, which means that the
certified product might be vulnerable.
Certificate #4993
Webpage information
Security policy
Symmetric Algorithms
AES, AES-128, AES-192, AES-256, AES-, CAST, HMAC, HMAC-SHA-256, HMAC-SHA-224, HMAC-SHA-384, HMAC-SHA-512, CMACAsymmetric Algorithms
ECDH, ECDSA, Diffie-HellmanHash functions
SHA-1, SHA-384, SHA-512, SHA-256, SHA-224, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA-3, MD5, PBKDF, PBKDF2Schemes
MACRandomness
DRBG, RNG, RBGLibraries
libgcryptElliptic Curves
P-224, P-256, P-384, P-521, P-512Block cipher modes
ECB, CBC, CTR, CFB, GCM, CCM, XTSTrusted Execution Environments
PSPSecurity level
Level 1Side-channel analysis
Timing Attacks, timing attacksStandards
FIPS 140-3, FIPS PUB 140-3, FIPS186-4, FIPS 186-4, FIPS 198-1, FIPS186-2, FIPS 180-4, FIPS 202, FIPS 186-5, FIPS 197, SP 800-132, SP 800-38A, SP 800-38C, SP 800-38B, SP 800-38F, SP 800-38E, SP 800-90A, SP 800-90B, PKCS 1, PKCS #1File metadata
| Creation date | D:20250807132200-04'00' |
|---|---|
| Modification date | D:20250807132414-04'00' |
| Pages | 70 |
| Creator | Acrobat PDFMaker 25 for Word |
| Producer | Adobe PDF Library 25.1.51 |
Heuristics
CPE matches
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2022-21505 | MEDIUM | 6.7 | 5.9 | 24.12.2024 19:15 | ||
| CVE-2023-22024 | MEDIUM | 5.5 | 3.6 | 20.09.2023 21:15 | ||
| CVE-2025-4598 | MEDIUM | 4.7 | 3.6 | 30.05.2025 14:15 | ||
References
No references are available for this certificate.
Updates
-
08.09.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated.
-
01.09.2025 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The related_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2025-4598']}values added.
- The related_cves property was updated, with the
-
18.08.2025 The certificate data changed.
Certificate changed
The web extraction data was updated.
- The validation_history property was updated, with the
[[1, {'_type': 'sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry', 'date': '2025-08-15', 'validation_type': 'Update', 'lab': 'ATSEC INFORMATION SECURITY CORP'}]]values inserted.
The PDF extraction data was updated.
- The keywords property was updated, with the
{'fips_certlike': {'__update__': {'Certlike': {'__insert__': {'HMAC- SHA-1': 6, 'SHA- 512': 4, 'SHA3- 224': 2, 'SHA3- 384': 2, '- PKCS 1': 15, 'AES-128': 4, 'AES-192': 4, 'AES-256': 4, 'PKCS 1': 15}, '__update__': {'HMAC-SHA-256': 18, 'HMAC-SHA-1': 38, 'SHA-1': 55, 'SHA2-224': 21, 'SHA2-256': 31, 'SHA2-384': 21, 'SHA2-512': 29, 'SHA3-224': 7, 'SHA3-256': 9, 'SHA3-384': 7, 'SHA3-512': 9, 'SHA-512': 5}}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__insert__': {'AES-128': 4, 'AES-192': 4, 'AES-256': 4}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'HMAC': 30, 'HMAC-SHA-256': 9}}}}}}, 'asymmetric_crypto': {'__update__': {'ECC': {'__update__': {'ECDSA': {'__update__': {'ECDSA': 120}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 55}}, 'SHA2': {'__update__': {'SHA-512': 5}}, 'SHA3': {'__update__': {'SHA3-224': 7, 'SHA3-256': 9, 'SHA3-384': 7, 'SHA3-512': 9}}}}, 'PBKDF': {'__update__': {'PBKDF': 25}}}}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 96}}}}, 'ecc_curve': {'__update__': {'NIST': {'__update__': {'P-256': 82, 'P-384': 58, 'P-521': 58, 'P-224': 44}}}}, 'crypto_library': {'__update__': {'libgcrypt': {'__update__': {'libgcrypt': 86}}}}, 'standard_id': {'__update__': {'FIPS': {'__update__': {'FIPS186-4': 87, 'FIPS186-2': 6}}, 'NIST': {'__update__': {'SP 800-132': 13}}, 'PKCS': {'__insert__': {'PKCS 1': 15}}}}}data. - The policy_metadata property was updated, with the
{'pdf_file_size_bytes': 870179, 'pdf_number_of_pages': 70, '/CreationDate': "D:20250807132200-04'00'", '/Creator': 'Acrobat PDFMaker 25 for Word', '/ModDate': "D:20250807132414-04'00'", '/Producer': 'Adobe PDF Library 25.1.51'}data.
The state was updated.
- The policy_pdf_hash property was set to
4b017d9d732fce7c17745f1e09da4c9ea01f3aefb6725a45338d3dcca6787e9d. - The policy_txt_hash property was set to
6cf9d883401952b0b6de90885551aab813d1d4bcb2b33b82997fc98eaa9ab39f.
- The validation_history property was updated, with the
-
23.06.2025 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The cpe_matches property was updated, with the
{'_type': 'Set', 'elements': ['cpe:2.3:o:oracle:linux:9:0:*:*:*:*:*:*']}values discarded. - The related_cves property was updated, with the
{'_type': 'Set', 'elements': ['CVE-2022-21505']}values added.
- The cpe_matches property was updated, with the
-
04.04.2025 The certificate was first processed.
New certificate
A new FIPS 140 certificate with the product name Oracle Linux 9 libgcrypt Cryptographic Module was processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 4993,
"dgst": "e0a612f22ea3eab1",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": []
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:o:oracle:linux:9:-:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"9"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2025-4598",
"CVE-2023-22024",
"CVE-2022-21505"
]
},
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 120
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"CCM": {
"CCM": 9
},
"CFB": {
"CFB": 1
},
"CTR": {
"CTR": 1
},
"ECB": {
"ECB": 5
},
"GCM": {
"GCM": 4
},
"XTS": {
"XTS": 8
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"libgcrypt": {
"libgcrypt": 86
}
},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 13
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 44,
"P-256": 82,
"P-384": 58,
"P-512": 2,
"P-521": 58
}
},
"eval_facility": {
"atsec": {
"atsec": 3
}
},
"fips_cert_id": {
"Cert": {
"#1": 10
}
},
"fips_certlike": {
"Certlike": {
"- PKCS 1": 15,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4,
"HMAC SHA-256": 2,
"HMAC- SHA-1": 6,
"HMAC-SHA-1": 38,
"HMAC-SHA-224": 10,
"HMAC-SHA-256": 18,
"HMAC-SHA-384": 10,
"HMAC-SHA-512": 10,
"PKCS #1": 20,
"PKCS 1": 15,
"SHA- 256": 4,
"SHA- 512": 4,
"SHA-1": 55,
"SHA-224": 5,
"SHA-256": 53,
"SHA-3": 1,
"SHA-384": 9,
"SHA-512": 5,
"SHA2-224": 21,
"SHA2-256": 31,
"SHA2-384": 21,
"SHA2-512": 29,
"SHA3- 224": 2,
"SHA3- 384": 2,
"SHA3-224": 7,
"SHA3-256": 9,
"SHA3-384": 7,
"SHA3-512": 9
}
},
"fips_security_level": {
"Level": {
"Level 1": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 2
}
},
"PBKDF": {
"PBKDF": 25,
"PBKDF2": 4
},
"SHA": {
"SHA1": {
"SHA-1": 55
},
"SHA2": {
"SHA-224": 5,
"SHA-256": 53,
"SHA-384": 9,
"SHA-512": 5
},
"SHA3": {
"SHA-3": 1,
"SHA3-224": 7,
"SHA3-256": 9,
"SHA3-384": 7,
"SHA3-512": 9
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 96
},
"RNG": {
"RBG": 2,
"RNG": 1
}
},
"side_channel_analysis": {
"SCA": {
"Timing Attacks": 1,
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140-3": 8,
"FIPS 180-4": 38,
"FIPS 186-4": 49,
"FIPS 186-5": 2,
"FIPS 197": 1,
"FIPS 198-1": 50,
"FIPS 202": 19,
"FIPS PUB 140-3": 2,
"FIPS186-2": 6,
"FIPS186-4": 87
},
"NIST": {
"SP 800-132": 13,
"SP 800-38A": 25,
"SP 800-38B": 5,
"SP 800-38C": 4,
"SP 800-38E": 5,
"SP 800-38F": 5,
"SP 800-90A": 14,
"SP 800-90B": 1
},
"PKCS": {
"PKCS #1": 10,
"PKCS 1": 15
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 82,
"AES-": 3,
"AES-128": 4,
"AES-192": 4,
"AES-256": 4
},
"CAST": {
"CAST": 234
}
},
"constructions": {
"MAC": {
"CMAC": 8,
"HMAC": 30,
"HMAC-SHA-224": 5,
"HMAC-SHA-256": 9,
"HMAC-SHA-384": 5,
"HMAC-SHA-512": 5
}
}
},
"tee_name": {
"AMD": {
"PSP": 2
}
},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "",
"/Comments": "",
"/Company": "",
"/CreationDate": "D:20250807132200-04\u002700\u0027",
"/Creator": "Acrobat PDFMaker 25 for Word",
"/Keywords": "",
"/ModDate": "D:20250807132414-04\u002700\u0027",
"/Producer": "Adobe PDF Library 25.1.51",
"/SourceModified": "",
"/Subject": "",
"/Title": "",
"pdf_file_size_bytes": 870179,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-5.pdf",
"http://www.oracle.com/",
"https://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
"https://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdf",
"https://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-38F.pdf",
"https://csrc.nist.gov/Projects/cryptographic-module-validation-program/fips-140-3-ig-announcements",
"https://gnupg.org/documentation/manuals/gcrypt.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf",
"http://www.atsec.com/",
"https://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf",
"https://csrc.nist.gov/publications/fips/fips198-1/FIPS-198-1_final.pdf",
"https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-135r1.pdf",
"https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.202.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Ar3.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90Ar1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-108r1.pdf",
"https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-133r2.pdf"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 70
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_garbage": false,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_pdf_hash": "4b017d9d732fce7c17745f1e09da4c9ea01f3aefb6725a45338d3dcca6787e9d",
"policy_txt_hash": "6cf9d883401952b0b6de90885551aab813d1d4bcb2b33b82997fc98eaa9ab39f"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in approved mode. When installed, initialized and configured as specified in Section 11.1 of the Security Policy. No assurance of minimum security of SSPs (e.g., keys, bit strings) that are externally loaded, or of SSPs established with externally loaded SSPs.",
"certificate_pdf_url": null,
"date_sunset": "2030-03-27",
"description": "The Oracle Linux 9 libgcrypt Cryptographic Module is a software library implementing general purpose cryptographic algorithms.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical security: N/A",
"Non-invasive security: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Oracle Linux 9 libgcrypt Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-3",
"status": "active",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-03-28",
"lab": "atsec information security corporation",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2025-08-15",
"lab": "atsec information security corporation",
"validation_type": "Update"
}
],
"vendor": "Oracle Corporation",
"vendor_url": "http://www.oracle.com"
}
}