Solution
Please Install the Updated Packages.
Insight
Yuval Yarom and Katrina Falkner discovered a timing-based information leak, known as Flush+Reload, that could be used to trace execution in programs.
GnuPG and Libgcrypt followed different execution paths based on key-related data, which could be used to expose the contents of private keys.
Affected
gnupg on Ubuntu 13.04 ,
Ubuntu 12.10 ,
Ubuntu 12.04 LTS ,
Ubuntu 10.04 LTS
Severity
Classification
-
CVE CVE-2013-4242 -
CVSS Base Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N
Related Vulnerabilities