Libgcrypt is a general purpose cryptographic library originally based on code from GnuPG.
Security Fix(es):
The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver's public key, and the sender's ephemeral exponents can lead to a cross-configuration attack against OpenPGP.(CVE-2021-40528)
{ "severity": "Medium" }
{ "noarch": [ "libgcrypt-help-1.8.6-4.oe1.noarch.rpm" ], "aarch64": [ "libgcrypt-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-debuginfo-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-devel-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-debugsource-1.8.6-4.oe1.aarch64.rpm" ], "src": [ "libgcrypt-1.8.6-4.oe1.src.rpm" ], "x86_64": [ "libgcrypt-debugsource-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-debuginfo-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-devel-1.8.6-4.oe1.x86_64.rpm" ] }
{ "noarch": [ "libgcrypt-help-1.8.6-4.oe1.noarch.rpm" ], "aarch64": [ "libgcrypt-devel-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-debugsource-1.8.6-4.oe1.aarch64.rpm", "libgcrypt-debuginfo-1.8.6-4.oe1.aarch64.rpm" ], "src": [ "libgcrypt-1.8.6-4.oe1.src.rpm" ], "x86_64": [ "libgcrypt-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-debugsource-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-debuginfo-1.8.6-4.oe1.x86_64.rpm", "libgcrypt-devel-1.8.6-4.oe1.x86_64.rpm" ] }