9 matches found
The vulnerability of the EC key verification library in the Math cryptographic security module of Bouncy Castle allows a perpetrator to gain unauthorized access to the protected information.
The vulnerability of the EC key verification library in the Bouncy Castle cryptographic security framework is related to synchronization errors that occur when using a shared resource for processing deterministic digital signatures of the ECDSA type. Exploiting this vulnerability could allow an...
bouncycastle: Timing issue within the EC math library
A flaw was found in bouncycastle. A timing issue within the EC math library can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures...
bouncycastle: Timing issue within the EC math library
A flaw was found in bouncycastle. A timing issue within the EC math library can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures...
bouncycastle: Timing issue within the EC math library
A flaw was found in bouncycastle. A timing issue within the EC math library can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures...
GHSA-6XX3-RG99-GC3P Timing based private key exposure in Bouncy Castle
Bouncy Castle BC Java before 1.66, BC C .NET before 1.8.7, BC-FJA before 1.0.2.1, BC before 1.66, BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of...
Timing Attack
Overview Affected versions of this package are vulnerable to Timing Attack. A timing issue within the EC math library can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures. Remediation...
DEBIAN-CVE-2020-15522
Bouncy Castle BC Java before 1.66, BC C .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multip...
UBUNTU-CVE-2020-15522
Bouncy Castle BC Java before 1.66, BC C .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multip...
bouncycastle: Timing issue within the EC math library
A flaw was found in bouncycastle. A timing issue within the EC math library can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures...