A cryptographic cache-based side channel in the RSA implementation in Botan before 1.10.17, and 1.11.x and 2.x before 2.3.0, allows a local attacker to recover information about RSA secret keys, as demonstrated by CacheD. This occurs because an array is indexed with bits derived from a secret key.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-09-26T01:00:00

Updated: 2024-08-05T19:34:39.919Z

Reserved: 2017-09-25T00:00:00

Link: CVE-2017-14737

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-09-26T01:29:03.303

Modified: 2024-11-21T03:13:25.830

Link: CVE-2017-14737

cve-icon Redhat

No data.