CVE-2015-0837 - Gnupg Libgcrypt, Gnupg Gnupg and Debian Debian Linux

Moderate 5.9

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."

Affected software

Gnupg Libgcrypt

Gnupg Gnupg

Debian Debian Linux

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.