The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote malicious users to obtain private keys via a timing attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cryptopp crypto\\+\\+ library 5.6.2 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |