Alejandro Cabrera Aldaya, Billy Brumley, Cesar Pereida Garcia and Luis
Manuel Alvarez Tapia discovered that OpenSSL incorrectly handled RSA
key generation. An attacker could possibly use this issue to perform a
cache-timing attack and recover private RSA keys.
References:
https://usn.ubuntu.com/usn/usn-3628-1
CVE-2018-0737
沒有留言:
張貼留言