Bad Security Bug in GnuPG: C Language Blamed (Yet Again)

GnuPG has a serious vulnerability, in a library also used elsewhere: Libgcrypt 1.9.0 contains a classic programming error.
The post Bad Security Bug in GnuPG: C Language Blamed (Yet Again) appeared first on Security Boulevard.
Continue reading Bad Security Bug in GnuPG: C Language Blamed (Yet Again)

“Serious” vulnerability found in Libgcrypt, GnuPG’s cryptographic library

Libgcrypt 1.9.0, the newest version of a cryptographic library integrated in the GNU Privacy Guard (GnuPG) free encryption software, has a “severe” security vulnerability and should not be used, warned Werner Koch. Libgcrypt vulnerability w… Continue reading “Serious” vulnerability found in Libgcrypt, GnuPG’s cryptographic library

GnuPG Crypto Library libgcrypt Cracked Via Side-Channel

Some clever boffins including Internet software pioneer djb have gotten libgcrypt cracked via a Side-Channel attack which has to do with the direction of a sliding window carried out in the library. Patches have already been released so update your Lin… Continue reading GnuPG Crypto Library libgcrypt Cracked Via Side-Channel

Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library

Security boffins have discovered a critical vulnerability in a GnuPG cryptographic library that allowed the researchers to completely break RSA-1024 and successfully extract the secret RSA key to decrypt data.

Gnu Privacy Guard (GnuPG or GPG) is popul… Continue reading Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library

GPG Patches 18-Year-Old Libgcrypt RNG Bug

New versions of GPG and its crypto library Libgcrypt were released on Wednesday addressing a vulnerability that could allow an attacker to predict Libgcrypt RNG output. Continue reading GPG Patches 18-Year-Old Libgcrypt RNG Bug