CVE-2014-0076

EPSS 0.36%

openssl - security update

Published: 3/25/2014Modified: 4/28/2026

Also known as:DEBIAN-CVE-2014-0076

Description

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.

Affected packages (2)

Debian/opensslfrom 0, < 1.0.1g-1
Debian/opensslfrom 0, < 0.9.8o-4squeeze15

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-0076