Vulnerability Description
Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciphertext blinding for Elgamal decryption, which allows physically proximate attackers to obtain the server's private key by determining factors using crafted ciphertext and the fluctuations in the electromagnetic field during multiplication.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnupg | Gnupg | < 1.4.19 |
| Gnupg | Libgcrypt | < 1.6.3 |
| Debian | Debian Linux | 7.0 |
Related Weaknesses (CWE)
References
- http://www.cs.tau.ac.il/~tromer/radioexp/Third Party Advisory
- http://www.debian.org/security/2015/dsa-3184Third Party Advisory
- http://www.debian.org/security/2015/dsa-3185Third Party Advisory
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.htmlPatchRelease NotesVendor Advisory
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.htmlPatchVendor Advisory
- http://www.cs.tau.ac.il/~tromer/radioexp/Third Party Advisory
- http://www.debian.org/security/2015/dsa-3184Third Party Advisory
- http://www.debian.org/security/2015/dsa-3185Third Party Advisory
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.htmlPatchRelease NotesVendor Advisory
- https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.htmlPatchVendor Advisory
FAQ
What is CVE-2014-3591?
CVE-2014-3591 is a vulnerability with a CVSS score of 4.2 (MEDIUM). Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciphertext blinding for Elgamal decryption, which allows physically proximate attackers to obtain the server's private key by determin...
How severe is CVE-2014-3591?
CVE-2014-3591 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3591?
Check the references section above for vendor advisories and patch information. Affected products include: Gnupg Gnupg, Gnupg Libgcrypt, Debian Debian Linux.