109 matches found
CVE-2023-32097 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptotransparentaeaddecrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32097
The CVE-2023-32097 vulnerability affects Silicon Labs Gecko Platform SDK (GSDK) up to v4.2.1, specifically the function sli_crypto_transparent_aead_decrypt_tag. A compiler optimization removed a buffer-clearing operation, which can cause key material to be duplicated in RAM. This is characterized...
CVE-2023-32096 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32096
The vulnerability CVE-2023-32096 affects Silicon Labs Gecko Platform SDKs prior to or including 4.2.1, where the compiler removal of a buffer clear in the function sli_crypto_transparent_aead_encrypt_tag can cause key material to be duplicated in RAM. This can expose sensitive material within mem...
CVE-2023-32096 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-2481 Key duplication in GSDK
Compiler removal of buffer clearing in sliseopaqueimportkey in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-2481
The CVE-2023-2481 issue affects Silicon Labs Gecko Platform SDK versions 4.2.1 and earlier, caused by the compiler removing buffer clearing in the function sli_se_opaque_import_key, which can lead to key material being duplicated in RAM. This has direct confidentiality impact as sensitive keys ma...
CVE-2023-1132
CVE-2023-1132 affects Silicon Labs Gecko Platform SDK (Gecko Platform SDK) versions 4.2.1 and earlier. The root cause is the compiler removing the buffer clearing in the sli_se_driver_key_agreement function, which can cause key material to be duplicated in RAM. Documented impact indicates exposur...
CVE-2023-1132 Key duplication in GSDK
Compiler removal of buffer clearing in slisedriverkeyagreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-0965
CVE-2023-0965 : In Silicon Labs Gecko Platform SDK, the compiler failed to clear buffers in the function sli_cryptoacc_transparent_key_agreement , causing the key material to be duplicated in RAM. Affected: Gecko Platform SDK v4.2.1 and earlier. Impact: potential exposure of key material in RAM. ...
CVE-2023-0965 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptoacctransparentkeyagreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
Silicon Labs Gecko SDK 安全漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in Silicon Labs Gecko SDK 4.2.1 and prior versions, which stems from a...
PT-2023-23605 · Silicon · Silicon Labs Gecko Platform Sdk
Name of the Vulnerable Software and Affected Versions: Silicon Labs Gecko Platform SDK versions prior to 4.2.1 Description: The issue arises from the compiler removal of buffer clearing in the sli crypto transparent aead encrypt tag function, leading to key material duplication to RAM. This resul...
PT-2023-23608 · Silicon · Gecko Platform Sdk
Name of the Vulnerable Software and Affected Versions: Silicon Labs Gecko Platform SDK versions 4.2.1 and earlier Description: The issue arises from the compiler removal of buffer clearing in the sli se sign hash function, leading to key material duplication to RAM. This results in a security...
PT-2023-19793 · Silicon · Gecko Platform Sdk
Name of the Vulnerable Software and Affected Versions: Silicon Labs Gecko Platform SDK versions 4.2.1 and earlier Description: The issue arises from the compiler removal of buffer clearing in the sli se opaque import key function, leading to key material duplication to RAM. This results in a...
Silicon Labs Gecko SDK 安全漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in Silicon Labs Gecko SDK v4.2.1 and earlier versions, which stems from...
Silicon Labs Gecko SDK 安全漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in Silicon Labs Gecko SDK 4.2.1 and earlier versions, which stems from T...
PT-2023-16778 · Silicon · Gecko Platform Sdk
Name of the Vulnerable Software and Affected Versions: Silicon Labs Gecko Platform SDK versions 4.2.1 and earlier Description: The issue arises from the compiler removal of buffer clearing in the sli se driver key agreement function, leading to key material duplication to RAM. This results in a...
Silicon Labs Gecko SDK 安全漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in Silicon Labs Gecko SDK v4.2.1 and earlier versions, which stems from ...
Silicon Labs Gecko SDK 安全漏洞
The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in Silicon Labs Gecko SDK 4.2.1 and earlier versions, which stems from a...