Search for packages
Package details: pkg:alpm/archlinux/libgcrypt@1.7.7-1
purl pkg:alpm/archlinux/libgcrypt@1.7.7-1
Next non-vulnerable version 1.7.8-1
Latest non-vulnerable version 1.9.3-1
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-vavn-12uu-aaan
Aliases:
CVE-2017-7526
libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This side-channel requires that attacker can run arbitrary software on the hardware where the private RSA key is used.
1.7.8-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:46:11.542353+00:00 Arch Linux Importer Affected by VCID-vavn-12uu-aaan https://security.archlinux.org/AVG-338 36.0.0
2024-09-18T02:01:21.364198+00:00 Arch Linux Importer Affected by VCID-vavn-12uu-aaan https://security.archlinux.org/AVG-338 34.0.1
2024-06-19T21:46:20.723260+00:00 Arch Linux Importer Affected by VCID-vavn-12uu-aaan https://security.archlinux.org/AVG-338 34.0.0rc4
2024-01-03T22:27:31.900809+00:00 Arch Linux Importer Affected by VCID-vavn-12uu-aaan https://security.archlinux.org/AVG-338 34.0.0rc1