F5 Networks BIG-IP : GnuPG vulnerability (K75253136)
Low Nessus Plugin ID 88874
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionGnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload. (CVE-2013-4242)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K75253136.