Lucene search

K
prionPRIOn knowledge basePRION:CVE-2018-0734
HistoryOct 30, 2018 - 12:29 p.m.

Design/Logic Flaw

2018-10-3012:29:00
PRIOn knowledge base
www.prio-n.com
11

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.6%

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).

References