#VU33175 Cryptographic issues in Libgcrypt - CVE-2019-12904

Cybersecurity Help s.r.o.

Published: 2019-06-20 | Updated: 2020-08-03

Vulnerability identifier: #VU33175

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-12904

CWE-ID: CWE-310

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Libgcrypt
Client/Desktop applications / Encryption software

Vendor: GNU

Description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.)

Mitigation
Install update from vendor's website.

Vulnerable software versions

Libgcrypt: 1.8.4

External links
https://lists.opensuse.org/opensuse-security-announce/2019-07/msg00049.html
https://dev.gnupg.org/T4541
https://github.com/gpg/libgcrypt/commit/a4c561aab1014c3630bc88faf6f5246fee16b020
https://github.com/gpg/libgcrypt/commit/daedbbb5541cd8ecda1459d3b843ea4d92788762

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Cryptographic issues in libgcrypt (Alpine package)

OpenSUSE Linux update for libgcrypt

Cryptographic issues in GNU Libgcrypt