3 matches found
CVE-2018-12438
The Elliptic Curve Cryptography library aka sunec or libsunec allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the...
CVE-2018-12438
The Elliptic Curve Cryptography library aka sunec or libsunec allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the...
CVE-2018-12438
The CVE-2018-12438 entry concerns the Elliptic Curve Cryptography library (sunec/libsunec) enabling a memory-cache side-channel attack on ECDSA signatures (ROHNP). Documentation states an attacker must have local access or co-residency on the same host to recover an ECDSA key. No specific vulnera...