Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 1 Aug 2016 10:32:53 +0530
From: Huzaifa Sidhpurwala <huzaifas@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: Re: CVE Request: nettle's RSA code is vulnerable
 to cache sharing related attacks

On 07/29/2016 10:33 PM, cve-assign@...re.org wrote:
>> The following whitepaper talks about libgcrypt's RSA code being
>> vulnerable to a cache timing attack, which the paper claims is fixed in
>> 1.6.3.
> 
> As far as we can tell, your message did not provide a link to a
> whitepaper, and any attachment did not arrive either through direct
> email or in any of the oss-security list archives.
> 

Here is the paper i am referring to:

https://eprint.iacr.org/2016/596.pdf


-- 
Huzaifa Sidhpurwala / Red Hat Product Security Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ