CVE-2014-3591
Published: 31 December 2014
Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciphertext blinding for Elgamal decryption, which allows physically proximate attackers to obtain the server's private key by determining factors using crafted ciphertext and the fluctuations in the electromagnetic field during multiplication.
Priority
CVSS 3 base score: 4.2
Status
Package | Release | Status |
---|---|---|
libgcrypt20 Launchpad, Ubuntu, Debian |
upstream |
Released
(1.6.3-2)
|
lucid |
Does not exist
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
(trusty was released [1.6.1-2ubuntu1.14.04.1])
|
|
utopic |
Released
(1.6.1-2ubuntu1.14.10.1)
|
|
Patches: upstream: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=d482948ac41768c36c5352a513fca8c50d2da4db |
||
libgcrypt11 Launchpad, Ubuntu, Debian |
upstream |
Needed
|
lucid |
Released
(1.4.4-5ubuntu2.4)
|
|
precise |
Released
(1.5.0-3ubuntu0.4)
|
|
trusty |
Released
(1.5.3-2ubuntu4.2)
|
|
utopic |
Released
(1.5.4-2ubuntu1.1)
|
|
Patches: upstream: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=35cd81f134c0da4e7e6fcfe40d270ee1251f52c2 |
||
gnupg Launchpad, Ubuntu, Debian |
upstream |
Released
(1.4.18-7)
|
lucid |
Released
(1.4.10-2ubuntu1.8)
|
|
precise |
Released
(1.4.11-3ubuntu2.9)
|
|
trusty |
Released
(1.4.16-1ubuntu2.3)
|
|
utopic |
Released
(1.4.16-1.2ubuntu1.2)
|
|
Patches: upstream: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=ff53cf06e966dce0daba5f2c84e03ab9db2c3c8b |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3591
- http://www.cs.tau.ac.il/~tromer/radioexp/
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.html
- https://ubuntu.com/security/notices/USN-2554-1
- https://ubuntu.com/security/notices/USN-2555-1
- NVD
- Launchpad
- Debian