| Release | Version |
|---|---|
| bullseye | 1.8.7-6 |
| bookworm | 1.10.1-3 |
| trixie | 1.11.0-7 |
| forky | 1.12.2-1 |
| sid | 1.12.2-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-41989 | vulnerable | vulnerable | vulnerable | fixed | fixed | Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow ... |
| CVE-2021-33560 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encry ... |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2024-2236 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A timing-based side-channel flaw was found in libgcrypt's RSA implemen ... |
| CVE-2018-6829 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ... |
| Bug | Description |
|---|---|
| TEMP-0000000-96B2E9 | hardening for RSA-CRT leak |
| CVE-2026-41990 | Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a stat ... |
| CVE-2021-40528 | The ElGamal implementation in Libgcrypt before 1.9.4 allows plaintext ... |
| CVE-2021-3345 | _gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9. ... |
| CVE-2019-13627 | It was discovered that there was a ECDSA timing attack in the libgcryp ... |
| CVE-2018-0495 | Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache s ... |
| CVE-2017-9526 | In Libgcrypt before 1.7.7, an attacker who learns the EdDSA session ke ... |
| CVE-2017-7526 | libgcrypt before version 1.7.8 is vulnerable to a cache side-channel a ... |
| CVE-2017-0379 | Libgcrypt before 1.8.1 does not properly consider Curve25519 side-chan ... |
| CVE-2016-6313 | The mixing functions in the random number generator in Libgcrypt befor ... |
| CVE-2015-7511 | Libgcrypt before 1.6.5 does not properly perform elliptic-point curve ... |
| CVE-2015-0837 | The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.1 ... |
| CVE-2014-5270 | Libgcrypt before 1.5.4, as used in GnuPG and other products, does not ... |
| CVE-2014-3591 | Libgcrypt before 1.6.3 and GnuPG before 1.4.19 does not implement ciph ... |
| DSA / DLA | Description |
|---|---|
| DLA-2691-1 | libgcrypt20 - security update |
| DLA-1931-2 | libgcrypt20 - regression update |
| DLA-1931-1 | libgcrypt20 - security update |
| DLA-1405-1 | libgcrypt20 - security update |
| DSA-4231-1 | libgcrypt20 - security update |
| DSA-3959-1 | libgcrypt20 - security update |
| DSA-3901-1 | libgcrypt20 - security update |
| DSA-3880-1 | libgcrypt20 - security update |
| DSA-3650-1 | libgcrypt20 - security update |
| DSA-3474-1 | libgcrypt20 - security update |