4 matches found
CVE-2023-32098 Key duplication in GSDK
Compiler removal of buffer clearing in slisesignmessage in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32098 Key duplication in GSDK
Compiler removal of buffer clearing in slisesignmessage in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32098
The vulnerability CVE-2023-32098 affects Silicon Labs Gecko Platform SDK (Gecko SDK) up to v4.2.1. The root cause is a compiler removal of a buffer-clearing operation in sli_se_sign_message, which results in key material being duplicated in RAM. Documented impact is exposure of sensitive key mate...
CVE-2023-32098 Key duplication in GSDK
Compiler removal of buffer clearing in slisesignmessage in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...