Lucene search
K

4 matches found

OSV
OSV
added 2024/02/09 4:19 p.m.1 views

GHSA-X5J2-G63M-F8G4 pqc_kyber KyberSlash: division timings depending on secrets

Various Kyber software libraries in various environments leak secret information into timing, specifically because these libraries include a line of code that divides a secret numerator by a public denominator, the number of CPU cycles for division in various environments varies depending on the...

7.4CVSS5.8AI score
Exploits0References4
OSV
OSV
added 2024/01/03 9:40 p.m.16 views

GHSA-P4V8-JGCV-9G75 safe_pqc_kyber leaks parts of secret keys

Impact On some platforms, when an attacker can time decapsulation, and in particular when the attacker can forge cipher texts, they can learn parts of the secret key. Does not apply to ephemeral usage, such as when used in the regular way in TLS. Patches Patched in 0.6.2. References -...

7AI score
Exploits0References4
OSV
OSV
added 2023/12/01 12:0 p.m.15 views

RUSTSEC-2023-0079 KyberSlash: division timings depending on secrets

Various Kyber software libraries in various environments leak secret information into timing, specifically because these libraries include a line of code that divides a secret numerator by a public denominator, the number of CPU cycles for division in various environments varies depending on the...

7.4CVSS7AI score
Exploits0References6
RustSec
RustSec
added 2023/12/01 12:0 p.m.6 views

KyberSlash: division timings depending on secrets

Various Kyber software libraries in various environments leak secret information into timing, specifically because these libraries include a line of code that divides a secret numerator by a public denominator, the number of CPU cycles for division in various environments varies depending on the...

7AI score
Exploits0
Rows per page
Query Builder