Описание
ELSA-2024-1239: opencryptoki security update (MODERATE)
[3.21.0-9]
- timing side-channel in handling of RSA PKCS#1 v1.5 padded ciphertexts (Marvin) Resolves: RHEL-22792
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
opencryptoki
3.21.0-9.el9_3
opencryptoki-devel
3.21.0-9.el9_3
opencryptoki-icsftok
3.21.0-9.el9_3
opencryptoki-libs
3.21.0-9.el9_3
opencryptoki-swtok
3.21.0-9.el9_3
Oracle Linux x86_64
opencryptoki
3.21.0-9.el9_3
opencryptoki-devel
3.21.0-9.el9_3
opencryptoki-icsftok
3.21.0-9.el9_3
opencryptoki-libs
3.21.0-9.el9_3
opencryptoki-swtok
3.21.0-9.el9_3
Связанные CVE
Связанные уязвимости
A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key.
A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key.
A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. This flaw could potentially enable unauthorized RSA ciphertext decryption or signing, even without access to the corresponding private key.
A timing side-channel vulnerability has been discovered in the opencry ...