Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-7526

libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This side-channel requires that attacker can run arbitrary software on the hardware where the private RSA key is used.

Related bugs and status

CVE-2017-7526 (Candidate) is related to these bugs:

Bug #1700157: gcrypt.h reports version of libgcrypt20 as 1.7.2-beta

Summary				In	Importance	Status
	1700157	gcrypt.h reports version of libgcrypt20 as 1.7.2-beta		libgcrypt20 (Ubuntu)	Undecided	Fix Released

Bug #1785176: GnuPG 1.4.23 released on 2018-06-11, addresses CVE-2017-7526

Summary				In	Importance	Status
	1785176	GnuPG 1.4.23 released on 2018-06-11, addresses CVE-2017-7526		gnupg (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [gnupg-announce] 20170...
MISC: https://eprint.iacr.or...
CONFIRM: https://bugzilla.redha...
CONFIRM: https://git.gnupg.org/...
CONFIRM: https://git.gnupg.org/...
CONFIRM: https://git.gnupg.org/...
DEBIAN: DSA-3901
DEBIAN: DSA-3960
BID: 99338
SECTRACK: 1038915
UBUNTU: USN-3733-1
UBUNTU: USN-3733-2