CVE-2013-5915

Description

The RSA-CRT implementation in PolarSSL before 1.2.9 does not properly perform Montgomery multiplication, which might allow remote attackers to conduct a timing side-channel attack and retrieve RSA private keys.

CVSS Metrics

• v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.69%• Percentile: 72%

Techniques & Countermeasures

• CWE-310•Cryptographic Issues

  Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.

Affected Systems

• polarssl•polarssl

  ≤ 1.2.8 | 0.10.0 | 0.10.1 | 0.11.0 | 0.11.1 | 0.12.0 | 0.12.1 | 0.13.1 | 0.14.0 | 0.14.2 | 0.14.3 | 0.99:pre1 | 0.99:pre3 | 0.99:pre4 | 0.99:pre5 | 1.0.0 | 1.1.0 | 1.1.0:rc0 | 1.1.0:rc1 | 1.1.1 | 1.1.2 | 1.1.3 | 1.1.4 | 1.1.5 | 1.1.6 | 1.1.8 | 1.2.0 | 1.2.1 | 1.2.2 | 1.2.3 | 1.2.4 | 1.2.5 | 1.2.6 | 1.2.7

References (8)

• http://secunia.com/advisories/55084
• http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119014.html
• http://www.securityfocus.com/bid/62771
• http://osvdb.org/98049
• http://www.debian.org/security/2013/dsa-2782
• http://lists.fedoraproject.org/pipermail/package-announce/2013-October/119018.html
• http://lists.fedoraproject.org/pipermail/package-announce/2013-October/118758.html
• https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2013-05