Lucene search
UbuntuUSN-5080-1HistorySep 16, 2021 - 12:00 a.m.
Libgcrypt vulnerabilities
2021-09-1600:00:00
ubuntu.com
108
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.9 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.2%
Releases
- Ubuntu 21.04
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
Packages
- libgcrypt20 - LGPL Crypto library
Details
It was discovered that Libgcrypt incorrectly handled ElGamal encryption. An
attacker could possibly use this issue to recover sensitive information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 21.04 | noarch | libgcrypt20 | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | libgcrypt-mingw-w64-dev | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | libgcrypt20-dbgsym | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | libgcrypt20-dev | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | libgcrypt20-dev-dbgsym | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | libgcrypt20-doc | < 1.8.7-2ubuntu2.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | libgcrypt20 | < 1.8.5-5ubuntu1.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | libgcrypt-mingw-w64-dev | < 1.8.5-5ubuntu1.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | libgcrypt20-dbgsym | < 1.8.5-5ubuntu1.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | libgcrypt20-dev | < 1.8.5-5ubuntu1.1 | UNKNOWN |
Related
redhatcve
redhatcve
CVE-2021-40528
2021-09-09 19:46:03
CVE-2021-33560
2021-06-09 20:15:23
cloudfoundry
cloudfoundry
USN-5080-1: Libgcrypt vulnerabilities | Cloud Foundry
2021-10-28 00:00:00
osv
osv
libgcrypt20 vulnerabilities
2021-09-16 16:07:21
libgcrypt20 vulnerabilities
2021-09-16 11:12:40
Moderate: libgcrypt security update
2022-06-28 10:51:57
openvas
openvas
Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2023-1266)
2023-01-31 00:00:00
Huawei EulerOS: Security Advisory for libgcrypt (EulerOS-SA-2022-1127)
2022-02-13 00:00:00
Ubuntu: Security Advisory (USN-5080-1)
2021-09-17 00:00:00
nessus
nessus
GLSA-202210-13 : libgcrypt: Multiple Vulnerabilities
2022-10-31 00:00:00
EulerOS 2.0 SP3 : libgcrypt (EulerOS-SA-2022-1173)
2022-02-23 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Libgcrypt vulnerabilities (USN-5080-1)
2021-09-16 00:00:00
ubuntu
ubuntu
Libgcrypt vulnerabilities
2021-09-16 00:00:00
gentoo
gentoo
libgcrypt: Multiple Vulnerabilities
2022-10-31 00:00:00
ubuntucve
ubuntucve
CVE-2021-40528
2021-09-06 00:00:00
CVE-2021-33560
2021-06-08 00:00:00
oraclelinux
oraclelinux
libgcrypt security and bug fix update
2021-11-16 00:00:00
libgcrypt security update
2022-07-01 00:00:00
libgcrypt security update
2022-07-07 00:00:00
alpinelinux
alpinelinux
CVE-2021-33560
2021-06-08 11:15:07
CVE-2021-40528
2021-09-06 19:15:07
cbl_mariner
cbl_mariner
CVE-2021-33560 affecting package libgcrypt 1.8.7-3
2021-07-08 21:56:34
CVE-2021-40528 affecting package libgcrypt 1.8.7-3
2021-11-06 06:45:24
debian
debian
[SECURITY] [DLA 2691-1] libgcrypt20 security update
2021-06-24 22:55:50
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a cross-configuration attack against OpenPGP (CVE-2021-40528)
2023-01-12 21:59:00
fedora
fedora
[SECURITY] Fedora 33 Update: libgcrypt-1.8.8-1.fc33
2021-06-30 03:33:04
[SECURITY] Fedora 34 Update: libgcrypt-1.9.3-3.fc34
2021-07-01 01:14:42
almalinux
almalinux
Moderate: libgcrypt security and bug fix update
2021-11-09 09:18:49
Moderate: libgcrypt security update
2022-06-30 00:00:00
githubexploit
githubexploit
Exploit for Observable Discrepancy in Gnupg Libgcrypt
2021-07-16 15:24:11
cve
cve
CVE-2021-33560
2021-06-08 11:15:07
CVE-2021-40528
2021-09-06 19:15:07
photon
photon
Moderate Photon OS Security Update - PHSA-2021-0124
2021-10-21 00:00:00
Important Photon OS Security Update - PHSA-2021-0051
2021-06-23 00:00:00
Moderate Photon OS Security Update - PHSA-2021-4.0-0124
2021-11-05 00:00:00
redhat
redhat
(RHSA-2022:5311) Moderate: libgcrypt security update
2022-06-28 10:51:57
(RHSA-2021:4409) Moderate: libgcrypt security and bug fix update
2021-11-09 09:18:49
redos
redos
ROS-20220125-15
2022-01-25 00:00:00
prion
prion
Cross site scripting
2021-09-06 19:15:00
Code injection
2021-06-08 11:15:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2316
2023-12-26 11:51:16
mageia
mageia
Updated libgcrypt packages fix security vulnerability
2021-09-29 20:22:22
Updated libgcrypt packages fix a security vulnerability
2021-06-29 00:16:35
veracode
veracode
Denial Of Service (DoS)
2021-09-08 13:25:34
Information Disclosure
2021-05-29 21:17:44
rocky
rocky
libgcrypt security update
2022-06-28 10:51:57
libgcrypt security and bug fix update
2021-11-09 09:18:49
cvelist
cvelist
CVE-2021-40528
2021-09-06 00:00:00
CVE-2021-33560
2021-06-08 00:00:00
debiancve
debiancve
CVE-2021-40528
2021-09-06 19:15:07
CVE-2021-33560
2021-06-08 11:15:07
nvd
nvd
CVE-2021-40528
2021-09-06 19:15:07
CVE-2021-33560
2021-06-08 11:15:07
suse
suse
Security update for libgcrypt (important)
2021-07-11 00:00:00
Security update for libgcrypt (important)
2021-06-25 00:00:00
amazon
amazon
Medium: libgcrypt
2022-04-04 23:47:00
Medium: libgcrypt
2022-04-04 23:22:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.9 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
61.2%
Related for USN-5080-1