CVE-2016-7439

The C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wolfssl:wolfssl:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:58

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/95050 - () http://www.securityfocus.com/bid/95050 -
References () https://wolfssl.com/wolfSSL/Blog/Entries/2016/9/26_wolfSSL_3.9.10_Vulnerability_Fixes.html - Vendor Advisory () https://wolfssl.com/wolfSSL/Blog/Entries/2016/9/26_wolfSSL_3.9.10_Vulnerability_Fixes.html - Vendor Advisory

Information

Published : 2016-12-13 16:59

Updated : 2024-11-21 02:58


NVD link : CVE-2016-7439

Mitre link : CVE-2016-7439

CVE.ORG link : CVE-2016-7439


JSON object : View

Products Affected

wolfssl

  • wolfssl
CWE
CWE-310

Cryptographic Issues