CVE-2024-28834

2024-03-2114:15:07

Google

osv.dev

gnutls minerva attack

cve-2024-28834

cryptographic vulnerability

deterministic behavior

side-channel leaks

gnutls_privkey_flag_reproducible

nonce size

timing side-channel

software

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.2%

JSON

A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

CPENameOperatorVersion
gnutlseq3.5.11-r0
gnutlseq3.0.20-r0
gnutlseq3.6.13-r0
gnutlseq3.4.10-r0
gnutlseq3.3.1-r0
gnutlseq3.3.7-r0
gnutlseq3.1.1-r0
gnutlseq3.6.8-r1
gnutlseq3.3.6-r0
gnutlseq3.2.11-r0

Name	Operator	Version
gnutls	eq	3.5.11-r0
gnutls	eq	3.0.20-r0
gnutls	eq	3.6.13-r0
gnutls	eq	3.4.10-r0
gnutls	eq	3.3.1-r0
gnutls	eq	3.3.7-r0
gnutls	eq	3.1.1-r0
gnutls	eq	3.6.8-r1
gnutls	eq	3.3.6-r0
gnutls	eq	3.2.11-r0