This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x
and possibly other products, allows local users to obtain private RSA
keys via a cache side-channel attack involving the L3 cache, aka
See also :
Run 'yum update libgcrypt' to update your system.
Risk factor :
Low / CVSS Base Score : 1.9
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 70230 ()
CVE ID: CVE-2013-4242