Timing Attack

tlslite-ng is vulnerable to information disclosure. An RSA weakness that leaks information about the decrypted ciphertext such as the bit length of the decrypted message as well as where the first unexpected byte lays, allows an attacker to determine information about the plaintext...

GHSA-WVCV-832Q-FJG7 RSA weakness in tslite-ng

Impact The code that performs decryption and padding check in RSA PKCS1 v1.5 decryption is data dependant. In particular, code in current as of 0.8.0-alpha38 master https://github.com/tlsfuzzer/tlslite-ng/blob/0812ed60860fa61a6573b2c0e18771414958f46d/tlslite/utils/rsakey.pyL407-L441 and code in...

RSA weakness in tslite-ng

Impact The code that performs decryption and padding check in RSA PKCS1 v1.5 decryption is data dependant. In particular, code in current as of 0.8.0-alpha38 master https://github.com/tlsfuzzer/tlslite-ng/blob/0812ed60860fa61a6573b2c0e18771414958f46d/tlslite/utils/rsakey.pyL407-L441 and code in...

SUSE-SA:2003:024: openssl

The remote host is missing the patch for the advisory SUSE-SA:2003:024 openssl. Researchers from the University of Stanford have discovered certain weaknesses in OpenSSL's RSA decryption algorithm. It allows remote attackers to compute the private RSA key of a server by observing its timing...