Information disclosure in libgcrypt (Alpine package)

Published: 2014-08-21

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2014-5270
CWE-ID	CWE-200
Exploitation vector	Local
Public exploit	N/A
Vulnerable software	libgcrypt (Alpine package) Operating systems & Components / Operating system package or component
Vendor	Alpine Linux Development Team

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Information disclosure

EUVDB-ID: #VU32505

Risk: Low

CVSSv4.0: 1.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2014-5270

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a local non-authenticated attacker to gain access to sensitive information.

Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate attackers to conduct key-extraction attacks by leveraging the ability to collect voltage data from exposed metal, a different vector than CVE-2013-4576.

Mitigation

Install update from vendor's website.

Vulnerable software versions

libgcrypt (Alpine package): 1.5.0-r0 - 1.5.3-r0

CPE2.3

External links

https://git.alpinelinux.org/aports/commit/?id=dca967dba133304c05d02e621aefb8790ce37135
https://git.alpinelinux.org/aports/commit/?id=8ed8bf5e79c29b662ee26b6ba0895c891101f1d4
https://git.alpinelinux.org/aports/commit/?id=8009421a6bb2d34a9b42b9b96110a7ad454db783

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.