CVE-2018-12435 — Sensitive Information Exposure in Botan

CWE-200 — Sensitive Information Exposure8 documents5 sources

Severity

5.9MEDIUMNVD

EPSS

0.2%

top 63.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Botan Project Botan Debian Botan

Timeline

PublishedJun 15

Latest updateMay 14

Description

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ec_group/ec_group.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:NExploitability: 1.4 | Impact: 4.0

Affected Packages3 packages

▶debiandebian/botan< botan 2.6.0-3 (bookworm)

▶Debianbotan_project/botan< 2.6.0-3+2

▶NVDbotan_project/botan2.5.0 — 2.7.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-xwpq-mm7j-gvv6: Botan 2↗2022-05-14

▶

OSV

CVE-2018-12435: Botan 2↗2018-06-15

▶

📋Vendor Advisories

Debian

CVE-2018-12435: botan - Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack...↗2018

▶

💬Community

Bugzilla

CVE-2018-12435 botan: memory-cache side-channel attack on ECDSA signatures [epel-all]↗2018-06-15

▶

Bugzilla

CVE-2018-12435 botan: memory-cache side-channel attack on ECDSA signatures [fedora-all]↗2018-06-15

▶

Bugzilla

CVE-2018-12435 botan: memory-cache side-channel attack on ECDSA signatures↗2018-06-15

▶

Bugzilla

CVE-2018-12435 botan2: botan: memory-cache side-channel attack on ECDSA signatures [fedora-all]↗2018-06-15

▶