CVE-2013-4242

🗓️ 19 Aug 2013 23:09:55Reported by redhatType

GnuPG and Libgcrypt vulnerability: private RSA key exposure

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 117
Tenable Nessus	Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : gnupg, libgcrypt11 vulnerability (USN-1923-1)	1 Aug 201300:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : libgcrypt (CESA-2013:1457)	27 Oct 201300:00	–	nessus
Tenable Nessus	Fedora 19 : libgcrypt-1.5.3-1.fc19 (2013-13678)	2 Aug 201300:00	–	nessus
Tenable Nessus	Debian DSA-2731-1 : libgcrypt11 - information leak	30 Jul 201300:00	–	nessus
Tenable Nessus	Oracle Solaris Third-Party Patch Update : libgcrypt (cve_2013_4242_information_disclosure)	19 Jan 201500:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : libgcrypt on SL5.x, SL6.x i386/x86_64 (20131024)	25 Oct 201300:00	–	nessus
Tenable Nessus	Fedora 18 : gnupg-1.4.14-1.fc18 (2013-13940)	15 Aug 201300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : libgcrypt (ALAS-2013-226)	1 Oct 201300:00	–	nessus
Tenable Nessus	FreeBSD : GnuPG and Libgcrypt -- side-channel attack vulnerability (689c2bf7-0701-11e3-9a25-002590860428)	20 Aug 201300:00	–	nessus
Tenable Nessus	Oracle Linux 5 / 6 : libgcrypt (ELSA-2013-1457)	25 Oct 201300:00	–	nessus

Nvd

Node

canonical ubuntu_linuxMatch10.04-lts

canonical ubuntu_linuxMatch12.04-lts

canonical ubuntu_linuxMatch12.10

canonical ubuntu_linuxMatch13.04

Node

debian debian_linuxMatch6.0

debian debian_linuxMatch7.0

Node

gnupg gnupgRange≤1.4.13

gnupg gnupgMatch0.0.0-

gnupg gnupgMatch0.2.15

gnupg gnupgMatch0.2.16

gnupg gnupgMatch0.2.17

gnupg gnupgMatch0.2.18

gnupg gnupgMatch0.2.19

gnupg gnupgMatch0.3.0

gnupg gnupgMatch0.3.1

gnupg gnupgMatch0.3.2

gnupg gnupgMatch0.3.3

gnupg gnupgMatch0.3.4

gnupg gnupgMatch0.3.5

gnupg gnupgMatch0.4.0

gnupg gnupgMatch0.4.1

gnupg gnupgMatch0.4.3

gnupg gnupgMatch0.4.4

gnupg gnupgMatch0.4.5

gnupg gnupgMatch0.9.0

gnupg gnupgMatch0.9.1

gnupg gnupgMatch0.9.2

gnupg gnupgMatch0.9.3

gnupg gnupgMatch0.9.4

gnupg gnupgMatch0.9.5

gnupg gnupgMatch0.9.6

gnupg gnupgMatch0.9.7

gnupg gnupgMatch0.9.8

gnupg gnupgMatch0.9.9

gnupg gnupgMatch0.9.10

gnupg gnupgMatch0.9.11

gnupg gnupgMatch1.0.0

gnupg gnupgMatch1.0.1

gnupg gnupgMatch1.0.2

gnupg gnupgMatch1.0.3

gnupg gnupgMatch1.0.4

gnupg gnupgMatch1.0.4-win32

gnupg gnupgMatch1.0.5

gnupg gnupgMatch1.0.5-win32

gnupg gnupgMatch1.0.6

gnupg gnupgMatch1.0.7

gnupg gnupgMatch1.2.0

gnupg gnupgMatch1.2.1

gnupg gnupgMatch1.2.1windows

gnupg gnupgMatch1.2.2

gnupg gnupgMatch1.2.3

gnupg gnupgMatch1.2.4

gnupg gnupgMatch1.2.5

gnupg gnupgMatch1.2.6

gnupg gnupgMatch1.2.7

gnupg gnupgMatch1.3.0

gnupg gnupgMatch1.3.1

gnupg gnupgMatch1.3.2

gnupg gnupgMatch1.3.3

gnupg gnupgMatch1.3.4

gnupg gnupgMatch1.3.6

gnupg gnupgMatch1.3.90

gnupg gnupgMatch1.3.91

gnupg gnupgMatch1.3.92

gnupg gnupgMatch1.3.93

gnupg gnupgMatch1.4.0

gnupg gnupgMatch1.4.10

gnupg gnupgMatch1.4.11

gnupg gnupgMatch1.4.12

Node

gnupg gnupgMatch2.0.1

gnupg gnupgMatch2.0.3

gnupg gnupgMatch2.0.4

gnupg gnupgMatch2.0.5

gnupg gnupgMatch2.0.6

gnupg gnupgMatch2.0.7

gnupg gnupgMatch2.0.8

gnupg gnupgMatch2.0.10

gnupg gnupgMatch2.0.11

gnupg gnupgMatch2.0.12

gnupg gnupgMatch2.0.13

gnupg gnupgMatch2.0.14

gnupg gnupgMatch2.0.15

gnupg gnupgMatch2.0.16

gnupg gnupgMatch2.0.17

gnupg gnupgMatch2.0.18

gnupg gnupgMatch2.0.19

Node

gnupg libgcryptRange≤1.5.2

gnupg libgcryptMatch1.4.0

gnupg libgcryptMatch1.4.3

gnupg libgcryptMatch1.4.4

gnupg libgcryptMatch1.4.5

gnupg libgcryptMatch1.4.6

gnupg libgcryptMatch1.5.0

gnupg libgcryptMatch1.5.1

Node

opensuse opensuseMatch12.2

opensuse opensuseMatch12.3

Source	Link
lists	www.lists.gnupg.org/pipermail/gnupg-announce/2013q3/000330.html
securityfocus	www.securityfocus.com/bid/61464
lists	www.lists.opensuse.org/opensuse-updates/2013-08/msg00003.html
secunia	www.secunia.com/advisories/54318
bugs	www.bugs.debian.org/cgi-bin/bugreport.cgi
kb	www.kb.juniper.net/InfoCenter/index
secunia	www.secunia.com/advisories/54321
kb	www.kb.cert.org/vuls/id/976534
debian	www.debian.org/security/2013/dsa-2731
eprint	www.eprint.iacr.org/2013/448

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Aug 2013 23:55Current

6Medium risk

Vulners AI Score6

CVSS21.9

EPSS0.00069

CWE-200