CVE-2017-6076

Опубликовано: 24 фев. 2017

Источник: debian

EPSS Низкий

Описание

In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes it easier to extract RSA key information for a malicious user who has access to view cache on a machine.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	3.10.2+dfsg-1		package

Примечания

https://github.com/wolfSSL/wolfssl/releases/tag/v3.10.2-stable
https://github.com/wolfSSL/wolfssl/commit/345df93978c41da1ac8047a37f1fed5286883d8d

EPSS

Процентиль: 36%

0.00154

Низкий

Связанные уязвимости

CVE-2017-6076

CVSS3: 5.5

ubuntu

почти 9 лет назад

In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes it easier to extract RSA key information for a malicious user who has access to view cache on a machine.

CVE-2017-6076

CVSS3: 5.5

nvd

почти 9 лет назад

In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes it easier to extract RSA key information for a malicious user who has access to view cache on a machine.

GHSA-8hxw-x3wx-q3hv

CVSS3: 5.5

github

больше 3 лет назад

In versions of wolfSSL before 3.10.2 the function fp_mul_comba makes it easier to extract RSA key information for a malicious user who has access to view cache on a machine.

EPSS

Процентиль: 36%

0.00154

Низкий