5 matches found
Timing Side-Channel in PSK Binder Verification
...
EUVD-2025-198521
The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...
CVE-2025-11932 Timing Side-Channel in PSK Binder Verification
The server previously verified the TLS 1.3 PSK binder using a non-constant time method which could potentially leak information about the PSK binder...
PT-2025-47820
Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description The server previously verified the TLS 1.3 PSK binder using a non-constant time method, which could potentially leak information about the PSK binder. The TLS 1.3 PSK binder is a cryptographic element used to...
wolfssl -- multiple issues
wolfSSL blog reports: This release includes multiple fixes across TLS 1.2, TLS 1.3, X25519, XChaCha20-Poly1305, and PSK processing. Highlights include: A timing-side-channel issue in X25519 specifically affecting Xtensa-based ESP32 devices. Low-memory X25519 implementations are now the default fo...