Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-0837

Опубликовано: 29 нояб. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.9

Описание

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."

РелизСтатусПримечание
devel

not-affected

1.4.18-7ubuntu1
esm-infra-legacy/trusty

released

1.4.16-1ubuntu2.3
lucid

released

1.4.10-2ubuntu1.8
precise

released

1.4.11-3ubuntu2.9
trusty

released

1.4.16-1ubuntu2.3
trusty/esm

released

1.4.16-1ubuntu2.3
upstream

released

1.4.18-7
utopic

released

1.4.16-1.2ubuntu1.2

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

released

1.5.3-2ubuntu4.2
lucid

released

1.4.4-5ubuntu2.4
precise

released

1.5.0-3ubuntu0.4
trusty

released

1.5.3-2ubuntu4.2
trusty/esm

released

1.5.3-2ubuntu4.2
upstream

needed

utopic

released

1.5.4-2ubuntu1.1

Показывать по

РелизСтатусПримечание
devel

released

1.6.2-4ubuntu2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1.6.1-2ubuntu1.14.04.1]]
lucid

DNE

precise

DNE

trusty

released

1.6.1-2ubuntu1.14.04.1
trusty/esm

DNE

trusty was released [1.6.1-2ubuntu1.14.04.1]
upstream

released

1.6.3-2
utopic

released

1.6.1-2ubuntu1.14.10.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 71%
0.00677
Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2015-0837

redhat
почти 11 лет назад

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."

nvd логотип

CVE-2015-0837

CVSS3: 5.9
nvd
около 6 лет назад

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."

debian логотип

CVE-2015-0837

CVSS3: 5.9
debian
около 6 лет назад

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.1 ...

suse-cvrf логотип

SUSE-SU-2015:1511-1

suse-cvrf
больше 10 лет назад

Security update for libgcrypt

github логотип

GHSA-3ccv-3j4f-926q

CVSS3: 5.9
github
больше 3 лет назад

The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack."

EPSS

Процентиль: 71%
0.00677
Низкий

4.3 Medium

CVSS2

5.9 Medium

CVSS3