PT-2019-14862 · Arm+2 · Arm Mbed Tls+3
Published
2019-09-26
·
Updated
2023-03-03
·
CVE-2019-16910
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Arm Mbed TLS versions prior to 2.19.0
Arm Mbed Crypto versions prior to 2.0.0
Description
The issue arises when deterministic ECDSA is enabled, and an RNG with insufficient entropy for blinding is used. This might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times.
Recommendations
For Arm Mbed TLS versions prior to 2.19.0, update to version 2.19.0 or apply the fix available in versions 2.7.12 and 2.16.3.
For Arm Mbed Crypto versions prior to 2.0.0, update to version 2.0.0.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Arm Mbed Crypto
Arm Mbed Tls
Astra Linux