GHSA-p4v8-jgcv-9g75

Опубликовано: 03 янв. 2024

Источник: github

Github: Прошло ревью

Описание

safe_pqc_kyber leaks parts of secret keys

Impact

On some platforms, when an attacker can time decapsulation, and in particular when the attacker can forge cipher texts, they can learn (parts of) the secret key.

Does not apply to ephemeral usage, such as when used in the regular way in TLS.

Patches

Patched in 0.6.2.

References

kyberslash.cr.yp.to

Ссылки

https://github.com/bwesterb/argyle-kyber/security/advisories/GHSA-p4v8-jgcv-9g75
https://github.com/bwesterb/argyle-kyber/commit/b5c6ad13f4eece80e59c6ebeafd787ba1519f5f6
https://kyberslash.cr.yp.to

Пакеты

Наименование

safe_pqc_kyber

rust

Затронутые версииВерсия исправления

< 0.6.2

0.6.2