#VU30571 Information disclosure in GnuPG - CVE-2014-3591


| Updated: 2020-07-17

Vulnerability identifier: #VU30571

Vulnerability risk: Low

CVSSv4.0: 0.6 [CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2014-3591

CWE-ID: CWE-200

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
GnuPG
Client/Desktop applications / Encryption software

Vendor: GNU

Description

The vulnerability allows a local non-authenticated attacker to gain access to sensitive information.

Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciphertext blinding for Elgamal decryption, which allows physically proximate attackers to obtain the server's private key by determining factors using crafted ciphertext and the fluctuations in the electromagnetic field during multiplication.

Mitigation
Install update from vendor's website.

Vulnerable software versions

GnuPG: 1.4.0 - 1.4.18

External links
https://www.cs.tau.ac.il/~tromer/radioexp/
https://www.debian.org/security/2015/dsa-3184
https://www.debian.org/security/2015/dsa-3185
https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html
https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.html

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Information disclosure in GNU GnuPG
Gentoo update for GnuPG
Information disclosure in gnupg1 (Alpine package)
Amazon Linux AMI update for libgcrypt
Fedora EPEL 7 update for mingw-libgcrypt
Fedora 22 update for mingw-libgcrypt
Fedora 21 update for mingw-libgcrypt
Slackware Linux update for gnupg
Fedora 21 update for libgcrypt
Fedora 22 update for libgcrypt