PT-2020-9946 · Arm+2 · Arm Mbed Crypto+3
Published
2020-01-23
·
Updated
2023-03-03
·
CVE-2019-18222
CVSS v3.1
4.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Mbed TLS versions 2.1 through 2.19.1
Arm Mbed Crypto version 2.1
Description
The issue concerns the ECDSA signature implementation in ecdsa.c, which does not reduce the blinded scalar before computing the inverse. This allows a local attacker to recover the private key via side-channel attacks.
Recommendations
For Mbed TLS versions 2.1 through 2.19.1, update to a version that fixes the issue with the ECDSA signature implementation.
For Arm Mbed Crypto version 2.1, update to a version that fixes the issue with the ECDSA signature implementation.
As a temporary workaround, consider restricting access to sensitive operations that rely on the ECDSA signature implementation until a patch is available.
Fix
Side Channel Attack
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Arm Mbed Crypto
Astra Linux
Mbed Tls