Peter Schwabe

2 exploits Active since Jun 2024
CVE-2024-36405 WRITEUP MEDIUM WRITEUP
liboqs < 0.10.1 - Covert Timing Channel in Kyber Key Encapsulation Mechanism
liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. A control-flow timing lean has been identified in the reference implementation of the Kyber key encapsulation mechanism when it is compiled with Clang 15-18 for `-Os`, `-O1`, and other compilation options. A proof-of-concept local attack on the reference implementation leaks the entire ML-KEM 512 secret key in ~10 minutes using end-to-end decapsulation timing measurements. The issue has been fixed in version 0.10.1. As a possible workaround, some compiler options may produce vectorized code that does not leak secret information, however relying on these compiler options as a workaround may not be reliable.
CVSS 5.9
CVE-2024-37880 WRITEUP HIGH WRITEUP
pq-crystals/kyber < 2024-06-03 - Timing Side-Channel Attack via Secret-Dependent Branch in poly_frommsg
The Kyber reference implementation before 9b8d306, when compiled by LLVM Clang through 18.x with some common optimization options, has a timing side channel that allows attackers to recover an ML-KEM 512 secret key in minutes. This occurs because poly_frommsg in poly.c does not prevent Clang from emitting a vulnerable secret-dependent branch.
CVSS 7.5