Published: 25/03/2014 Updated: 13/02/2023

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 169

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

The Montgomery ladder implementation in OpenSSL up to and including 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openssl openssl 0.9.7
openssl openssl 0.9.5a
openssl openssl 0.9.8b
openssl openssl 0.9.7l
openssl openssl 0.9.6i
openssl openssl 0.9.8m
openssl openssl 0.9.3
openssl openssl 0.9.8c
openssl openssl 1.0.0c
openssl openssl 1.0.0i
openssl openssl 0.9.7c
openssl openssl 1.0.0
openssl openssl 0.9.5
openssl openssl 0.9.8n
openssl openssl 0.9.8p
openssl openssl 0.9.6d
openssl openssl 0.9.1c
openssl openssl 0.9.6
openssl openssl 0.9.7j
openssl openssl 0.9.6a
openssl openssl 0.9.8e
openssl openssl 0.9.8u
openssl openssl 0.9.4
openssl openssl 0.9.8g
openssl openssl 1.0.0h
openssl openssl 0.9.8k
openssl openssl 0.9.8d
openssl openssl 1.0.0e
openssl openssl 1.0.0f
openssl openssl 0.9.6f
openssl openssl 0.9.8j
openssl openssl 0.9.6l
openssl openssl 1.0.0d
openssl openssl 0.9.7k
openssl openssl 1.0.0j
openssl openssl 0.9.8s
openssl openssl 0.9.7g
openssl openssl 0.9.6e
openssl openssl 0.9.7d
openssl openssl 0.9.8l
openssl openssl 0.9.6b
openssl openssl 0.9.7e
openssl openssl 0.9.7b
openssl openssl 1.0.0k
openssl openssl 0.9.8r
openssl openssl 0.9.8t
openssl openssl 0.9.6k
openssl openssl 0.9.8a
openssl openssl
openssl openssl 0.9.6g
openssl openssl 0.9.7m
openssl openssl 0.9.3a
openssl openssl 0.9.6h
openssl openssl 0.9.7i
openssl openssl 0.9.7h
openssl openssl 0.9.8o
openssl openssl 0.9.8q
openssl openssl 0.9.8w
openssl openssl 0.9.6j
openssl openssl 0.9.8
openssl openssl 0.9.7a
openssl openssl 0.9.6c
openssl openssl 0.9.6m
openssl openssl 0.9.8v
openssl openssl 0.9.8i
openssl openssl 0.9.8f
openssl openssl 0.9.8y
openssl openssl 1.0.0a
openssl openssl 0.9.8h
openssl openssl 0.9.8x
openssl openssl 0.9.2b
openssl openssl 1.0.0b
openssl openssl 1.0.0g
openssl openssl 0.9.7f

Multiple vulnerabilities have been discovered in OpenSSL The following Common Vulnerabilities and Exposures project ids identify them: CVE-2010-5298 A read buffer can be freed even when it still contains data that is used later on, leading to a use-after-free Given a race condition in a multi-threaded application it may permit an attacker to ...

OpenSSL could be made to expose sensitive information over the network, possibly including private keys ...

Debian Bug report logs - #742923 openssl: CVE-2014-0076 Package: src:openssl; Maintainer for src:openssl is Debian OpenSSL Team <pkg-openssl-devel@listsaliothdebianorg>; Reported by: Michael Gilbert <mgilbert@debianorg> Date: Sat, 29 Mar 2014 00:33:02 UTC Severity: important Tags: security Found in version opens ...

Debian Bug report logs - #775888 virtualbox: CVE-2014-6588 CVE-2014-6589 CVE-2014-6590 CVE-2014-6595 CVE-2015-0418 CVE-2015-0427 Package: virtualbox; Maintainer for virtualbox is Debian Virtualbox Team <team+debian-virtualbox@trackerdebianorg>; Source for virtualbox is src:virtualbox (PTS, buildd, popcon) Reported by: Mori ...

The Montgomery ladder implementation in OpenSSL through 100l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack ...

uvhw.bitcoin.js

Bitcoin Core version 091 is now available from: bitcoinorg/bin/091/ This is a security update It is recommended to upgrade to this release as soon as possible It is especially important to upgrade if you currently have version 090 installed and are using the graphical interface OR you are using bitcoind from any pre-091 version, and have enabled SSL for RPC a

CVE-2014-0076

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect