Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2821-1:4815F
HistoryDec 18, 2013 - 3:05 p.m.

[SECURITY] [DSA 2821-1] gnupg security update

2013-12-1815:05:39
lists.debian.org
10

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

54.4%

JSON

Debian Security Advisory DSA-2821-1 [email protected]
http://www.debian.org/security/ Thijs Kinkhorst
December 18, 2013 http://www.debian.org/security/faq

Package : gnupg
Vulnerability : side channel attack
Problem type : remote
Debian-specific: no
CVE ID : CVE-2013-4576

Genkin, Shamir and Tromer discovered that RSA key material could
be extracted by using the sound generated by the computer during the
decryption of some chosen ciphertexts.

For the oldstable distribution (squeeze), this problem has been fixed in
version 1.4.10-4+squeeze4.

For the stable distribution (wheezy), this problem has been fixed in
version 1.4.12-7+deb7u3.

For the unstable distribution (sid), this problem has been fixed in
version 1.4.15-2.

We recommend that you upgrade your gnupg packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

Related

nessus 19
prion 2
centos 1
openvas 26
oraclelinux 1
slackware 1
fedora 5
f5 2
ubuntu 1
mageia 1
securityvulns 2
ubuntucve 2
amazon 2
freebsd 1
cve 2
redhat 1
veracode 1
debiancve 1
rosalinux 1
nessus
nessus
Scientific Linux Security Update : gnupg on SL5.x i386/x86_64 (20140108)
2014-01-10 00:00:00
Fedora 18 : gnupg-1.4.16-2.fc18 (2013-23678)
2013-12-30 00:00:00
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : gnupg vulnerability (USN-2059-1)
2013-12-19 00:00:00
prion
prion
Code injection
2013-12-20 21:55:00
Code injection
2014-10-10 01:55:00
centos
centos
gnupg security update
2014-01-08 22:53:33
openvas
openvas
Fedora Update for gnupg FEDORA-2014-7676
2014-07-01 00:00:00
RedHat Update for gnupg RHSA-2014:0016-01
2014-01-21 00:00:00
Ubuntu Update for gnupg USN-2059-1
2013-12-23 00:00:00
oraclelinux
oraclelinux
gnupg security update
2014-01-08 00:00:00
slackware
slackware
[slackware-security] gnupg
2013-12-21 19:34:33
fedora
fedora
[SECURITY] Fedora 20 Update: gnupg-1.4.17-1.fc20
2014-06-27 02:28:57
[SECURITY] Fedora 20 Update: gnupg-1.4.16-2.fc20
2013-12-23 03:48:29
[SECURITY] Fedora 20 Update: gnupg-1.4.19-2.fc20
2015-03-14 09:16:09
f5
f5
SOL16396 - GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
K16396 : GnuPG vulnerability CVE-2013-4576
2015-04-09 00:00:00
ubuntu
ubuntu
GnuPG vulnerability
2013-12-18 00:00:00
mageia
mageia
Updated gnupg package fixes CVE-2013-4576
2013-12-20 21:29:34
securityvulns
securityvulns
GnuPG acoustic attack
2013-12-23 00:00:00
[USN-2059-1] GnuPG vulnerability
2013-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2013-4576
2013-12-18 00:00:00
CVE-2014-5270
2014-08-18 00:00:00
amazon
amazon
Medium: gnupg
2014-01-14 16:18:00
Medium: libgcrypt
2015-08-04 17:43:00
freebsd
freebsd
gnupg -- RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis attack
2013-12-18 00:00:00
cve
cve
CVE-2013-4576
2013-12-20 21:55:00
CVE-2014-5270
2014-10-10 01:55:00
redhat
redhat
(RHSA-2014:0016) Moderate: gnupg security update
2014-01-08 00:00:00
veracode
veracode
Side-channel Attack
2019-01-15 08:54:58
debiancve
debiancve
CVE-2014-5270
2014-10-10 01:55:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1870
2021-07-02 17:14:28

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

54.4%

JSON
Related for DEBIAN:DSA-2821-1:4815F
nessus19prion2centos1openvas26oraclelinux1slackware1fedora5f52ubuntu1mageia1securityvulns2ubuntucve2amazon2freebsd1cve2redhat1veracode1debiancve1rosalinux1