Lucene search
K
GnupgLibgcrypt

17 matches found

CVE
CVE
added 2021/06/08 12:0 a.m.456 views

CVE-2021-33560

CVE-2021-33560 affects Libgcrypt 1.8.x (before 1.8.8) and 1.9.x (before 1.9.3). The issue is a mishandling of ElGamal due to lack of exponent blinding in mpi_powm and improper window size, enabling side-channel leakage in OpenPGP scenarios. Affected products include environments using libgcrypt w...

7.5CVSS7.5AI score0.02342EPSS
CVE
CVE
added 2018/06/13 11:0 p.m.400 views

CVE-2018-0495

CVE-2018-0495 affects Libgcrypt prior to 1.7.10 and 1.8.x prior to 1.8.3. The root cause is a memory-cache side-channel (ROHNP) in the ECDSA signing path (_gcry_ecc_ecdsa_sign in cipher/ecc-ecdsa.c), enabling an attacker with local or co-resident VM access to recover ECDSA private keys. Mitigatio...

4.7CVSS5.5AI score0.00887EPSS
CVE
CVE
added 2019/06/19 11:34 p.m.325 views

CVE-2019-12904

CVE-2019-12904 affects Libgcrypt 1.8.4’s C AES implementation. The vulnerability arises from a flush-and-reload side-channel when physical addresses are exposed to other processes (used on platforms lacking an assembly AES). IBM’s bulletin lists the CVE and notes the vendor’s position that the is...

5.9CVSS5.8AI score0.02063EPSS
CVE
CVE
added 2021/09/06 12:0 a.m.306 views

CVE-2021-40528

The issue is a vulnerability in Libgcrypt’s ElGamal implementation prior to 1.9.4 where, during interaction between two cryptographic libraries, a specific combination of the receiver’s public-key prime and generator with the sender’s ephemeral exponents can enable plaintext recovery via a cross-...

5.9CVSS5.7AI score0.01423EPSS
CVE
CVE
added 2016/12/13 8:0 p.m.223 views

CVE-2016-6313

CVE-2016-6313 documents a design flaw in Libgcrypt’s random-number generator mixing functions (affecting Libgcrypt <1.5.6, <1.6.6 in 1.6.x, <1.7.3 in 1.7.x, and GnuPG

5.3CVSS5.6AI score0.03597EPSS
CVE
CVE
added 2018/07/26 1:0 p.m.206 views

CVE-2017-7526

GnuPG/libgcrypt: CVE-2017-7526 affects libgcrypt before 1.7.8, allowing a cache-side-channel attack that can fully recover RSA-1024 private keys (and likely RSA-2048 with more effort) when the attacker can run code on the same hardware. Connected sources confirm the vulnerability exists in libgcr...

6.8CVSS6.4AI score0.03885EPSS
CVE
CVE
added 2016/04/19 9:0 p.m.163 views

CVE-2015-7511

CVE-2015-7511 affects Libgcrypt up to version 1.6.4 (pre-1.6.5). The issue is an improper elliptic‑point curve multiplication during decryption that enables physical side‑channel leakage of ECDH private keys via electromagnetic emanations. Remediation is upgrading Libgcrypt to fixed releases (e.g...

2CVSS3.7AI score0.00429EPSS
CVE
CVE
added 2019/11/29 9:2 p.m.157 views

CVE-2014-3591

CVE-2014-3591 affects Libgcrypt (before 1.6.3) and GnuPG (before 1.4.19), which do not implement ciphertext blinding for ElGamal decryption, enabling physically proximate attackers to potentially extract private keys via crafted ciphertext and EM field fluctuations during multiplication. Related ...

4.2CVSS4.8AI score0.00576EPSS
CVE
CVE
added 2017/06/11 2:0 a.m.148 views

CVE-2017-9526

CVE-2017-9526 affects Libgcrypt prior to 1.7.7, where an attacker who observes the EdDSA session key during signing can recover the long-term secret key. Version 1.7.7 changes libgcrypt/ ecc-eddsa.c to store the session key in secure memory and ensures constant-time point operations in the MPI li...

5.9CVSS5.6AI score0.02318EPSS
CVE
CVE
added 2017/08/29 10:0 p.m.146 views

CVE-2017-0379

CVE-2017-0379 affects libgcrypt before 1.8.1, where Curve25519 side-channel attacks could allow a local attacker to recover a secret key. Public advisories indicate the flaw in cipher/ecc.c and mpi/ec.c can enable private-key recovery on multi-user systems or VMs. Remediation is to upgrade to lib...

7.5CVSS7.3AI score0.0351EPSS
CVE
CVE
added 2013/08/19 11:0 p.m.143 views

CVE-2013-4242

CVE-2013-4242 affects GnuPG before 1.4.14 and Libgcrypt before 1.5.3 (as used in GnuPG 2.0.x), enabling a local user to obtain private RSA keys via a cache side-channel (Flush+Reload) on the L3 cache. The root cause is a cache side-channel leak in the RSA key handling within GnuPG/Libgcrypt. Docu...

1.9CVSS6AI score0.00533EPSS
CVE
CVE
added 2021/01/29 2:20 p.m.129 views

CVE-2021-3345

The CVE-2021-3345 entry concerns Libgcrypt: the function gcry_md_block_write in cipher/hash-common.c on Libgcrypt 1.9.0 suffers a heap-based buffer overflow when the digest final function handles a large count. The identified remediation is to upgrade to Libgcrypt 1.9.1 or later. Impact details a...

7.8CVSS7.8AI score0.01064EPSS
CVE
CVE
added 2026/04/23 4:30 a.m.112 views

CVE-2026-41989

Libgcrypt before 1.12.2 is affected by CVE-2026-41989, where a heap-based buffer overflow can occur via crafted ECDH ciphertext to gcry_pk_decrypt, enabling denial of service. Vulnerable component: Libgcrypt crypto library (ECDH/decrypt path). Impact: DoS (potential crash) as described. Mitigatio...

6.7CVSS6AI score0.0018EPSS
CVE
CVE
added 2019/11/29 9:10 p.m.108 views

CVE-2015-0837

CVE-2015-0837 affects Libgcrypt (before 1.6.3) and GnuPG (before 1.4.19). It enables a timing side-channel attack on modular exponentiation using a pre-computed table, related to a Last-Level Cache side-channel attack. The description notes the timing differences that could allow an attacker to o...

5.9CVSS5.4AI score0.01952EPSS
CVE
CVE
added 2014/10/10 1:0 a.m.104 views

CVE-2014-5270

Libgcrypt prior to 1.5.4, used in GnuPG and other products, has a weakness in ciphertext normalization and ciphertext randomization. This side-channel condition could allow physically proximate attackers to perform key-extraction attacks by collecting voltage data from exposed metal. The CVE entr...

2.1CVSS5.6AI score0.00531EPSS
CVE
CVE
added 2018/02/07 11:0 p.m.81 views

CVE-2018-6829

CVE-2018-6829 affects Libgcrypt’s ElGamal (cipher/elgamal.c) up to version 1.8.2. When used to encrypt messages directly, it can improperly encode plaintexts, allowing a ciphertext-only attacker to recover sensitive information. The issue is tied to Libgcrypt’s DDH assumption not holding for its ...

7.5CVSS7.2AI score0.01811EPSS
CVE
CVE
added 2026/04/23 4:39 a.m.21 views

CVE-2026-41990

CVE-2026-41990 affects Libgcrypt prior to 1.12.2, where Dilithium signing mishandles a static array write that lacks a bounds check. The issue does not use attacker-controlled data. CVSSv3.1 base metrics indicate a Medium risk (4.0) with LOCAL attack vector, HIGH complexity, NONE privileges, and ...

4CVSS5.8AI score0.00176EPSS