CVE-2014-0076

OpenSSL < 1.0.0l - ECDSA Nonce Exposure via FLUSH+RELOAD Cache Side-Channel Attack

Title source: llm
STIX 2.1

Description

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.

References (64)

Core 64
Core References
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676092
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676419
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676062
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676424
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676655
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677828
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677695
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676501
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7015300
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59264
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59454
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/66363
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/58492
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7015264
Issue Tracking x_refsource_confirm
https://bugs.gentoo.org/show_bug.cgi?id=505278
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59445
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140266410314613&w=2
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140317760000786&w=2
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140621259019789&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59300
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0165.html
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2014-04/msg00007.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59495
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59655
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59374
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140389274407904&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/58939
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59514
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59438
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140482916501310&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/58727
Vendor Advisory x_refsource_confirm
http://www.openssl.org/news/secadv_20140605.txt
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT6443
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2165-1
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140904544427729&w=2
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2014:067
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140752315422991&w=2
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/show_bug.cgi?id=869945
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59040
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140389355508263&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59175
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=140448122410568&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59413
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59721
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21673137
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:062
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676035
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59450
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59364
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/60571
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59162
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59490
Various Sources x_refsource_misc
http://eprint.iacr.org/2014/140

Scores

EPSS 0.0036
EPSS Percentile 58.3%

Details

CWE
CWE-310
Status published
Products (34)
openssl/openssl 0.9.1c
openssl/openssl 0.9.2b
openssl/openssl 0.9.3
openssl/openssl 0.9.3a
openssl/openssl 0.9.4
openssl/openssl 0.9.5 (3 CPE variants)
openssl/openssl 0.9.5a (3 CPE variants)
openssl/openssl 0.9.6 (4 CPE variants)
openssl/openssl 0.9.6a (4 CPE variants)
openssl/openssl 0.9.6b
... and 24 more
Published Mar 25, 2014
Tracked Since Feb 18, 2026