A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openssl openssl |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 6.0 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 12.04 |