CVE-2014-3591

MEDIUM

GnuPG < 1.4.19 and Libgcrypt < 1.6.3 - Private Key Exposure via Elgamal Decryption Side Channel

Title source: llm
STIX 2.1

Description

Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciphertext blinding for Elgamal decryption, which allows physically proximate attackers to obtain the server's private key by determining factors using crafted ciphertext and the fluctuations in the electromagnetic field during multiplication.

References (5)

Core 5
Core References
Third Party Advisory x_refsource_misc
http://www.cs.tau.ac.il/~tromer/radioexp/
Patch, Release Notes, Vendor Advisory x_refsource_misc
https://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000363.html
Third Party Advisory x_refsource_misc
http://www.debian.org/security/2015/dsa-3184
Third Party Advisory x_refsource_misc
http://www.debian.org/security/2015/dsa-3185

Scores

CVSS v3 4.2
EPSS 0.0058
EPSS Percentile 43.3%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (4)
debian/debian_linux 7.0
debian/debian_linux 8.0
gnupg/gnupg < 1.4.19
gnupg/libgcrypt < 1.6.3
Published Nov 29, 2019
Tracked Since Feb 18, 2026