Vulnerabilities > CVE-2019-13629 - Information Exposure Through Discrepancy vulnerability in Matrixssl
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
MatrixSSL 4.2.1 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or a remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because crypto/pubkey/ecc_math.c scalar multiplication leaks the bit length of the scalar.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://www.openwall.com/lists/oss-security/2019/10/02/2
- http://www.openwall.com/lists/oss-security/2019/10/02/2
- https://eprint.iacr.org/2011/232.pdf
- https://eprint.iacr.org/2011/232.pdf
- https://minerva.crocs.fi.muni.cz/
- https://minerva.crocs.fi.muni.cz/
- https://tches.iacr.org/index.php/TCHES/article/view/7337
- https://tches.iacr.org/index.php/TCHES/article/view/7337