Vulnerabilities

CVE-2016-8871

by Fred · 28/10/2016

In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding options had a detectable timing channel which could given sufficient queries be used to recover plaintext, aka an "OAEP side channel" attack.

Date published : 2016-10-28

http://www.securityfocus.com/bid/94225

https://botan.randombit.net/security.html

Related

Tags: Cybersecurity Alert