Computer Security
[EN] securityvulns.ru no-pyccku


libcrypto++ timing attacks
Published:05.07.2015
Source:
SecurityVulns ID:14565
Type:library
Threat Level:
5/10
Description:Rabin-Williams algorithm timing attacks.
Affected:LIBRCYPT : libcrypto++ 5.6
CVE:CVE-2015-2141 (The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3296-1] libcrypto++ security update (05.07.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod