Headline

GHSA-9763-4f94-gfch: CIRCL's Kyber: timing side-channel (kyberslash2)

Impact

On some platforms, when an attacker can time decapsulation of Kyber on forged cipher texts, they could possibly learn (parts of) the secret key.

Does not apply to ephemeral usage, such as when used in the regular way in TLS.

Patches

Patched in 1.3.7.

References

kyberslash.cr.yp.to

10 months ago

ghsa

Open in Source

#git #ssl

Package

gomod github.com/cloudflare/circl (Go)

Affected versions

< 1.3.7

Patched versions

1.3.7

Description

Impact

On some platforms, when an attacker can time decapsulation of Kyber on forged cipher texts, they could possibly learn (parts of) the secret key.

Does not apply to ephemeral usage, such as when used in the regular way in TLS.

Patches

Patched in 1.3.7.

References

kyberslash.cr.yp.to

References

GHSA-9763-4f94-gfch
cloudflare/circl@75ef91e
https://kyberslash.cr.yp.to/

bwesterb published to cloudflare/circl

Jan 8, 2024

Published to the GitHub Advisory Database

Jan 8, 2024

Reviewed

Jan 8, 2024

Last updated

Jan 8, 2024

ghsa: Latest News

GHSA-486g-47cc-8wxf: aiocpa contains credential harvesting code

12 hours ago

ghsa

GHSA-93ww-43rr-79v3: Keycloak mTLS Authentication Bypass via Reverse Proxy TLS Termination

14 hours ago

ghsa

GHSA-jgwc-jh89-rpgq: Keycloak proxy header handling Denial-of-Service (DoS) vulnerability

14 hours ago

ghsa

GHSA-xg58-75qf-9r67: Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges

15 hours ago

ghsa

GHSA-qqwr-j9mm-fhw6: deno_doc's HTML generator vulnerable to Cross-site Scripting

15 hours ago

ghsa