ARM mbed TLS prior to 2.12.0, prior to 2.7.5, and prior to 2.1.14 allows local users to achieve partial plaintext recovery (for a CBC based ciphersuite) via a cache-based side-channel attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arm mbed tls |
||
debian debian linux 9.0 |
||
debian debian linux 8.0 |