CVE-2017-9526
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
In Libgcrypt before 1.7.7, an attacker who learns the EdDSA session key (from side-channel observation during the signing process) can easily recover the long-term secret key. 1.7.7 makes a cipher/ecc-eddsa.c change to store this session key in secure memory, to ensure that constant-time point operations are used in the MPI library.
En Libgcrypt, anterior a versión 1.7.7, un atacante que aprende la clave de sesión EdDSA (de la observación del canal lateral durante el proceso de firma) puede fácilmente recuperar la clave secreta a largo plazo . 1.7.7 haciendo un cambio del archivo cipher/ecc-eddsa.c para almacenar esta clave de sesión en memoria segura, y así garantizar que operaciones puntuales de tiempo constante sean usadas en la biblioteca MPI.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-06-10 CVE Reserved
- 2017-06-11 CVE Published
- 2023-11-08 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html | X_refsource_confirm |
|
| http://www.securityfocus.com/bid/99046 | Third Party Advisory | |
| https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git%3Ba=commit%3Bh=5a22de904a0a366ae79f03ff1e13a1232a89e26b | X_refsource_confirm | |
| https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git%3Ba=commit%3Bh=f9494b3f258e01b6af8bd3941ce436bcc00afc56 | X_refsource_confirm | |
| https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html | X_refsource_confirm |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://bugzilla.suse.com/show_bug.cgi?id=1042326 | 2023-11-07 |
| URL | Date | SRC |
|---|---|---|
| http://www.debian.org/security/2017/dsa-3880 | 2023-11-07 |