CVE-2022-42961
CVE-2022-42961 concerns wolfSSL before 5.5.0, where a Rowhammer RAM fault injection can disclose ECDSA private-key material during signing (e.g., TLS handshakes). The issue may allow leakage of faulty ECC signatures, enabling an advanced technique for ECDSA key recovery. Impact is limited to conf...