The textbook ElGamal implementation is not secure. PyCrypto and some other implementations use the wrong algorithm, which may lead to some information disclosure simply by looking at the encrypted text. For a full description, see https://github.com/dlitz/pycrypto/issues/253
This update includes a fix for this problem backported from pycryptodome.
This is CVE-2018-6594.
Please login to add feedback.