Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-5270

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it...

2.1CVSS6.4AI score0.00531EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.18 views

Debian: Security Advisory (DLA-54-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.3AI score0.00531EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2014-0381)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.1AI score0.00531EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2014:1077-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.3AI score0.00531EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2020-1498)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.03885EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.26 views

Gentoo Security Advisory GLSA 201408-10

Gentoo Linux Local Security Checks GLSA 201408-10 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

2.1CVSS6.3AI score0.00531EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/08/05 12:0 a.m.43 views

Amazon Linux AMI : libgcrypt (ALAS-2015-577)

Fix a side-channel attack on data-dependent timing variations in modular exponentiation, which can potentially lead to an information leak. CVE-2015-0837 Fix a side-channel attack which can potentially lead to an information leak. CVE-2014-3591 Libgcrypt before 1.5.4, as used in GnuPG and other...

5.9CVSS6.1AI score0.01952EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/04/02 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-2554-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.02473EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/11/17 12:0 a.m.28 views

Debian DSA-3073-1 : libgcrypt11 - security update

Daniel Genkin, Itamar Pipman and Eran Tromer discovered that Elgamal encryption subkeys in applications using the libgcrypt11 library, for example GnuPG 2.x, could be leaked via a side-channel attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

2.1CVSS6.4AI score0.00531EPSS
Exploits0References3
Debian
Debian
added 2014/11/16 1:18 p.m.23 views

[SECURITY] [DSA 3073-1] libgcrypt11 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3073-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 16, 2014 http://www.debian.org/security/faq -...

2.1CVSS1.7AI score0.00531EPSS
Exploits0
Debian
Debian
added 2014/11/16 1:18 p.m.27 views

[SECURITY] [DSA 3073-1] libgcrypt11 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3073-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 16, 2014 http://www.debian.org/security/faq -...

2.1CVSS5.5AI score0.00531EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/11/16 12:0 a.m.26 views

Debian Security Advisory DSA 3073-1 (libgcrypt11 - security update)

Daniel Genkin, Itamar Pipman and Eran Tromer discovered that Elgamal encryption subkeys in applications using the libgcrypt11 library, for example GnuPG 2.x, could be leaked via a side-channel attack. OpenVAS Vulnerability Test $Id: deb3073.nasl 6759 2017-07-19 09:56:33Z teissa $ Auto-generated...

2.1CVSS0.00531EPSS
Exploits0References1
OSV
OSV
added 2014/10/10 1:55 a.m.7 views

CVE-2014-5270

Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate attackers to conduct key-extraction attacks by leveraging the ability to collect voltage data from exposed...

5.7AI score
Exploits0References7
CVE
CVE
added 2014/10/10 1:0 a.m.105 views

CVE-2014-5270

Libgcrypt prior to 1.5.4, used in GnuPG and other products, has a weakness in ciphertext normalization and ciphertext randomization. This side-channel condition could allow physically proximate attackers to perform key-extraction attacks by collecting voltage data from exposed metal. The CVE entr...

2.1CVSS5.6AI score0.00531EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/09/23 12:0 a.m.27 views

Mandriva Linux Security Advisory : gnupg (MDVSA-2014:180)

Updated gnupg packages fix security vulnerability : The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL side-channel attack CVE-2014-5270. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Mandriva Linux...

2.1CVSS6.4AI score0.00531EPSS
Exploits0References2
OSV
OSV
added 2014/09/22 8:31 a.m.8 views

MGASA-2014-0381 Updated gnupg packages fix CVE-2014-5270

Updated gnupg packages fix security vulnerability: The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL side-channel attack CVE-2014-5270...

2.1CVSS5.7AI score0.00531EPSS
Exploits0References3
Mageia
Mageia
added 2014/09/22 8:31 a.m.33 views

Updated gnupg packages fix CVE-2014-5270

Updated gnupg packages fix security vulnerability: The gnupg program before version 1.4.16 is vulnerable to an ELGAMAL side-channel attack CVE-2014-5270...

2.1CVSS6.2AI score0.00531EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/09/15 12:0 a.m.66 views

[USN-2339-1] GnuPG vulnerability

========================================================================== Ubuntu Security Notice USN-2339-1 September 03, 2014 gnupg vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

2.1CVSS0.1AI score0.00531EPSS
Exploits0
Debian
Debian
added 2014/09/14 7:23 a.m.34 views

[SECURITY] [DLA 53-1] gnupg security update

Package : gnupg Version : 1.4.10-4+squeeze6 CVE ID : CVE-2014-5270 Genkin, Pipman and Tromer discovered a side-channel attack on Elgamal encryption subkeys CVE-2014-5270. In addition, this update hardens GnuPGs behaviour when treating keyserver responses; GnuPG now filters keyserver responses to...

2.1CVSS6.7AI score0.00531EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/09/11 12:0 a.m.32 views

Debian Security Advisory DSA 3024-1 (gnupg - security update)

Genkin, Pipman and Tromer discovered a side-channel attack on Elgamal encryption subkeys CVE-2014-5270 . In addition, this update hardens GnuPG OpenVAS Vulnerability Test $Id: deb3024.nasl 6769 2017-07-20 09:56:33Z teissa $ Auto-generated from advisory DSA 3024-1 using nvtgen 1.0 Script version:...

2.1CVSS6AI score0.00531EPSS
Exploits0References1
Rows per page
Query Builder