Yuval Yarum

**Name of the Vulnerable Software and Affected Versions** Libgcrypt versions prior to 1.6.3 GnuPG versions prior to 1.4.19 **Description** The issue allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during modular exponentiation, related to a "Last-Level Cache Side-Channel Attack." This occurs in the `mpi powm` function. **Recommendations** For Libgcrypt versions prior to 1.6.3, update to version 1.6.3 or later. For GnuPG versions prior to 1.4.19, update to version 1.4.19 or later.