[ASA-202101-7] mbedtls: private key recovery
Arch Linux Security Advisory ASA-202101-7 ========================================= Severity: High Date : 2021-01-08 CVE-ID : CVE-2020-16150 Package : mbedtls Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-1386 Summary ======= The package mbedtls before version 2.25.0-1 is vulnerable to private key recovery. Resolution ========== Upgrade to 2.25.0-1. # pacman -Syu "mbedtls>=2.25.0-1" The problem has been fixed upstream in version 2.25.0. Workaround ========== None. Description =========== A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode because of a computed time difference based on a padding length. The issue is fixed in Mbed TLS 2.24.0, 2.16.8 and 2.7.17. Impact ====== An attacker might be able to recover secret key information via a side- channel. References ========== https://bugs.archlinux.org/task/69128 https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advis... https://security.archlinux.org/CVE-2020-16150
participants (1)
-
Morten Linderud