CVE-2015-7511
Description
Libgcrypt before 1.6.5 susceptible to physical side-channel attack allowing extraction of ECDH private keys via EM emanations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Libgcrypt before 1.6.5 susceptible to physical side-channel attack allowing extraction of ECDH private keys via EM emanations.
Vulnerability
Libgcrypt versions before 1.6.5 improperly perform elliptic-point curve multiplication during ECDH decryption, leaking sensitive information through electromagnetic emanations [1]. This affects ECDH implementation used in GnuPG 2.1 and other applications [2]. The vulnerability is tracked as CVE-2015-7511.
Exploitation
An attacker with physical proximity to the target machine and ability to measure electromagnetic emanations can recover the ECDH private key. The attack requires the attacker to request decryption of a single carefully chosen ciphertext multiple times (a few dozen iterations), then apply time-frequency signal analysis on the captured EM leakage [1].
Impact
Successful exploitation allows the attacker to extract the full ECDH private decryption key, leading to compromise of encrypted communications and data confidentiality.
Mitigation
The vulnerability is fixed in Libgcrypt version 1.6.5, released on February 9, 2016 [2]. Users should upgrade to this version or later. Ubuntu and Fedora have also issued updated packages (USN-2896-1 [3] and Fedora updates respectively). No workaround exists without upgrading.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
16cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- osv-coords9 versionspkg:rpm/opensuse/libgcrypt&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libgcrypt&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
< 1.7.3-1.3+ 8 more
- (no CPE)range: < 1.7.3-1.3
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
- (no CPE)range: < 1.6.1-16.27.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- lists.gnupg.org/pipermail/gnupg-announce/2016q1/000384.htmlnvdVendor Advisory
- lists.opensuse.org/opensuse-updates/2016-05/msg00027.htmlnvd
- www.cs.tau.ac.il/~tromer/ecdh/nvd
- www.debian.org/security/2016/dsa-3474nvd
- www.debian.org/security/2016/dsa-3478nvd
- www.securityfocus.com/bid/83253nvd
- www.ubuntu.com/usn/USN-2896-1nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2IL4PAEICHGA2XMQYRY3MIWHM4GMPAG/nvd
- security.gentoo.org/glsa/201610-04nvd
News mentions
0No linked articles in our index yet.