AVG-402 log
| Package | libgcrypt |
| Status | Fixed |
| Severity | Medium |
| Type | private key recovery |
| Affected | 1.8.0-1 |
| Fixed | 1.8.1-1 |
| Current | 1.11.0-2 [core] |
| Ticket | None |
| Created | Mon Sep 18 10:03:21 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-0379 | Medium | No | Private key recovery | Libgcrypt before 1.8.1 does not properly consider Curve25519 side- channel attacks, which makes it easier for attackers to discover a secret key, related to... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 18 Sep 2017 | ASA-201709-13 | libgcrypt | private key recovery |