Lucene search
MitreCVELIST:CVE-2019-13629HistoryOct 03, 2019 - 1:23 p.m.
CVE-2019-13629
2019-10-0313:23:25
mitre
www.cve.org
MatrixSSL 4.2.1 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or a remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because crypto/pubkey/ecc_math.c scalar multiplication leaks the bit length of the scalar.
Related
openvas
openvas
MatrixSSL < 4.2.2 Private Key Computation Vulnerability
2023-01-13 00:00:00
MatrixSSL < 4.2.2 Multiple Vulnerabilities
2019-08-05 00:00:00
cve
cve
CVE-2019-13629
2019-10-03 14:15:11
ubuntucve
ubuntucve
CVE-2019-13629
2019-10-03 00:00:00
prion
prion
Design/Logic Flaw
2019-10-03 14:15:00
nvd
nvd
CVE-2019-13629
2019-10-03 14:15:11