Описание
wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| wolfssl | fixed | 4.4.0+dfsg-1 | package |
Примечания
https://github.com/wolfSSL/wolfssl/pull/2894/
EPSS
Процентиль: 60%
0.00394
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 6 лет назад
wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.
CVSS3: 7.5
nvd
почти 6 лет назад
wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.
github
больше 3 лет назад
wolfSSL 4.3.0 has mulmod code in wc_ecc_mulmod_ex in ecc.c that does not properly resist timing side-channel attacks.
EPSS
Процентиль: 60%
0.00394
Низкий