vulnerability

Ubuntu: USN-3417-1 (CVE-2017-0379): Libgcrypt vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Aug 27, 2017	Sep 14, 2017	Aug 18, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Aug 27, 2017

Added

Sep 14, 2017

Modified

Aug 18, 2025

Description

Daniel Genkin, Luke Valenta, and Yuval Yarom discovered that Libgcrypt was
susceptible to an attack via side channels. A local attacker could use this
attack to recover Curve25519 private keys.

Solution

ubuntu-upgrade-libgcrypt20

References

CVE-2017-0379
https://attackerkb.com/topics/CVE-2017-0379
CWE-200
DEBIAN-DSA-3959
NVD-CVE-2017-0379
UBUNTU-USN-3417-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today