HCE1-SA-2023-0052 Important HCE 1.1 Security Fix(es): A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw extract plaintext or in some cases downgrade any TLS connections to a vulnerable server. (CVE-2018-16869) A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service. (CVE-2021-3580) HCE 1.1 nettle-2.7.1-10.hce1c.x86_64.rpm nettle-devel-2.7.1-10.hce1c.x86_64.rpm