Ubuntu Update For Gnupg USN-2339-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Daniel Genkin, Adi Shamir, and Eran Tromer discovered that GnuPG was susceptible to an adaptive chosen ciphertext attack via physical side channels. A local attacker could use this attack to possibly recover private keys.

Affected

gnupg on Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2014-5270
CVSS Base Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for libconfig-inifiles-perl USN-1543-1
Ubuntu Update for glance USN-1764-1
Ubuntu Update for apt USN-1283-1
Ubuntu Update for linux USN-1689-1
Ubuntu Update for rhythmbox USN-1503-1

Ubuntu Update for gnupg USN-2339-1

Take action and discover your vulnerabilities