CVE-2018-0737
Published: 16 April 2018
The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).
Notes
Author | Note |
---|---|
mdeslaur | USN-3628-1 was releases with a possible incomplete fix. Next USN should add the three first commits listed below |
Priority
Status
Severity score breakdown
Parameter | Value |
---|---|
Base score | 5.9 |
Attack vector | Network |
Attack complexity | High |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | None |
Availability impact | None |
Vector | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
References
- https://www.openssl.org/news/secadv/20180416.txt
- https://ubuntu.com/security/notices/USN-3628-1
- https://ubuntu.com/security/notices/USN-3628-2
- https://ubuntu.com/security/notices/USN-3692-1
- https://ubuntu.com/security/notices/USN-3692-2
- https://www.cve.org/CVERecord?id=CVE-2018-0737
- NVD
- Launchpad
- Debian