« List of all CVEs

CVE-2013-4242

Published: 8/19/2013 Last updated: 8/6/2024 Reserved: 6/12/2013

GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (1)

0install

Products affected (1)

Product Vendor Version
n/a n/a unspecified

References (32)