Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2017-7526
Description:libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This side-channel requires that attacker can run arbitrary software on the hardware where the private RSA key is used.
Test IDs: 1.3.6.1.4.1.25623.1.0.872819   1.3.6.1.4.1.25623.1.0.703901   1.3.6.1.4.1.25623.1.0.703960   1.3.6.1.4.1.25623.1.0.872886   1.3.6.1.4.1.25623.1.0.891015   1.3.6.1.4.1.25623.1.0.891080   1.3.6.1.4.1.25623.1.0.843608   1.3.6.1.4.1.25623.1.1.4.2017.1794.1   1.3.6.1.4.1.25623.1.1.4.2017.1866.1   1.3.6.1.4.1.25623.1.1.4.2017.2701.1   1.3.6.1.4.1.25623.1.1.4.2017.1793.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-7526
BugTraq ID: 99338
http://www.securityfocus.com/bid/99338
Debian Security Information: DSA-3901 (Google Search)
https://www.debian.org/security/2017/dsa-3901
Debian Security Information: DSA-3960 (Google Search)
https://www.debian.org/security/2017/dsa-3960
https://eprint.iacr.org/2017/627
https://lists.gnupg.org/pipermail/gnupg-announce/2017q2/000408.html
http://www.securitytracker.com/id/1038915
https://usn.ubuntu.com/3733-1/
https://usn.ubuntu.com/3733-2/




© 1998-2021 E-Soft Inc. All rights reserved.