CVE-2021-33560 - log back

CVE-2021-33560 edited at 08 Jun 2021 11:56:17
Description
- A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt when the recipient's key is not generated using the same or a compatible implementation.
+ Libgcrypt before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. (There is also an interoperability problem because the selection of the k integer value does not properly consider the differences between basic ElGamal encryption and generalized ElGamal encryption.) This, for example, affects use of ElGamal in OpenPGP.
References
https://dev.gnupg.org/T5328
- https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=3462280f2e23e16adf3ed5176e0f2413d8861320
+ https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=e8b7f10be275bcedb5fc05ed4837a89bfd605c61
CVE-2021-33560 edited at 03 Jun 2021 09:03:05
Description
- A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt before version 1.8.8 when the recipient's key is not generated using the same or a compatible implementation.
+ A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt when the recipient's key is not generated using the same or a compatible implementation.
References
https://dev.gnupg.org/T5328
- https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=707c3c5c511ee70ad0e39ec613471f665305fbea
+ https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=3462280f2e23e16adf3ed5176e0f2413d8861320
CVE-2021-33560 edited at 03 Jun 2021 09:02:19
Description
- A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt when the recipient's key is not generated using the same or a compatible implementation.
+ A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt before version 1.8.8 when the recipient's key is not generated using the same or a compatible implementation.
References
https://dev.gnupg.org/T5328
- https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=3462280f2e23e16adf3ed5176e0f2413d8861320
+ https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=707c3c5c511ee70ad0e39ec613471f665305fbea
CVE-2021-33560 edited at 28 May 2021 19:26:50
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Private key recovery
Description
+ A weakness has been found in the generation of ephemeral keys in the ElGamal encryption of libgcrypt when the recipient's key is not generated using the same or a compatible implementation.
References
+ https://dev.gnupg.org/T5328
+ https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=3462280f2e23e16adf3ed5176e0f2413d8861320
Notes
CVE-2021-33560 created at 28 May 2021 19:19:06