Lucene search
K

17 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.4 views

SUSE CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS8.2AI score0.00942EPSS
Exploits1References20
OSV
OSV
added 2019/03/08 7:29 p.m.4 views

ALPINE-CVE-2018-20187

A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an unblinded...

5.9CVSS6.8AI score0.01525EPSS
Exploits0References1
Veracode
Veracode
added 2017/02/08 2:53 a.m.26 views

Side-channel Timing Attack

OpenSSL is vulnerable to side-channel timing attacks. These attacks are possible because the Montgomery ladder implementation doesn't run swap operations in constant time which makes it easier for local users to obtain ECDSA nonce values...

1.9CVSS5.6AI score0.00942EPSS
Exploits1References67Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.56 views

Mandriva Linux Security Advisory : openssl (MDVSA-2015:062)

Multiple vulnerabilities has been discovered and corrected in openssl : Race condition in the ssl3readbytes function in s3pkt.c in OpenSSL through 1.0.1g, when SSLMODERELEASEBUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service use-after-free and...

7.5CVSS8.2AI score0.99999EPSS
Exploits106References27
Tenable Nessus
Tenable Nessus
added 2014/04/10 12:0 a.m.231 views

Mandriva Linux Security Advisory : openssl (MDVSA-2014:067)

Updated openssl packages fix security vulnerability : The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attac...

1.9CVSS7.2AI score0.00942EPSS
Exploits1References2
Mageia
Mageia
added 2014/04/08 7:58 a.m.71 views

Updated openssl package fix two security vulnerabilities

Updated openssl packages fix security vulnerability: The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

7.5CVSS6.6AI score0.99999EPSS
Exploits89References3
Gentoo Linux
Gentoo Linux
added 2014/04/08 12:0 a.m.50 views

OpenSSL: Information Disclosure

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been found in OpenSSL: OpenSSL incorrectly handles memory in the TLS...

7.5CVSS7.9AI score0.99999EPSS
Exploits89
Tenable Nessus
Tenable Nessus
added 2014/04/08 12:0 a.m.148 views

OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.1g. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.1g advisory. - The 1 TLS and 2 DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allo...

7.5CVSS8.1AI score0.99999EPSS
Exploits89References7
Tenable Nessus
Tenable Nessus
added 2014/04/08 12:0 a.m.57 views

OpenSSL 1.0.0 < 1.0.0m Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.0m. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.0m advisory. - The dtls1clearqueues function in ssl/d1lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data...

7.5CVSS8.7AI score0.99977EPSS
Exploits16References22
FreeBSD
FreeBSD
added 2014/04/07 12:0 a.m.37 views

OpenSSL -- Local Information Disclosure

OpenSSL reports: A flaw in the implementation of Montgomery Ladder Approach would create a side-channel that leaks sensitive timing information. A local attacker might be able to snoop a signing process and might recover the signing key from it...

1.9CVSS6.4AI score0.00942EPSS
Exploits1References1
OSV
OSV
added 2014/03/25 1:25 p.m.4 views

DEBIAN-CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS8.9AI score0.00942EPSS
Exploits1References1
NVD
NVD
added 2014/03/25 1:25 p.m.19 views

CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS5.4AI score0.00942EPSS
Exploits1References64
Prion
Prion
added 2014/03/25 1:25 p.m.34 views

Design/Logic Flaw

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS6.4AI score0.00942EPSS
Exploits1References64Affected Software1
CVE
CVE
added 2014/03/25 1:0 a.m.197 views

CVE-2014-0076

CVE-2014-0076 concerns the OpenSSL Montgomery ladder implementation. The issue is a timing/side-channel flaw in how certain swap operations are performed, enabling a local attacker to recover ECDSA nonces via a FLUSH+RELOAD cache side-channel. Affected product: OpenSSL up to 1.0.0l (and related O...

1.9CVSS5.6AI score0.00942EPSS
Exploits1References64Affected Software1
Cvelist
Cvelist
added 2014/03/25 1:0 a.m.31 views

CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

5.8AI score0.00942EPSS
Exploits1References64
Debian CVE
Debian CVE
added 2014/03/25 1:0 a.m.36 views

CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS6.1AI score0.00942EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2014/03/25 12:0 a.m.47 views

CVE-2014-0076

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack...

1.9CVSS6.8AI score0.00942EPSS
Exploits1References3
Rows per page
Query Builder