CVE-2019-12904

2019-06-20T00:15:00
ID CVE-2019-12904
Type cve
Reporter cve@mitre.org
Modified 2019-07-23T18:15:00

Description

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.)