It was discovered that Libgcrypt was susceptible to a ECDSA timing attack. An attacker could possibly use this attack to recover sensitive information.
{ "availability": "No subscription required", "binaries": [ { "libgcrypt-mingw-w64-dev": "1.8.1-4ubuntu1.2", "libgcrypt20-doc": "1.8.1-4ubuntu1.2", "libgcrypt20": "1.8.1-4ubuntu1.2", "libgcrypt20-dev": "1.8.1-4ubuntu1.2", "libgcrypt11-dev": "1.5.4-3+really1.8.1-4ubuntu1.2", "libgcrypt20-dev-dbgsym": "1.8.1-4ubuntu1.2", "libgcrypt20-dbgsym": "1.8.1-4ubuntu1.2", "libgcrypt20-udeb": "1.8.1-4ubuntu1.2" } ] }