CVE-2014-0076

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2014-0076

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2014-0076.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2014-0076

Downstream

DEBIAN-CVE-2014-0076

DLA-0003-1

DSA-2908-1

SUSE-FU-2022:0445-1

SUSE-SU-2015:0545-1

SUSE-SU-2015:0545-2

SUSE-SU-2015:1182-1

SUSE-SU-2015:1182-2

SUSE-SU-2015:1184-1

SUSE-SU-2015:1184-2

SUSE-SU-403

SUSE-SU-403 Forbidden-1

openSUSE-SU-2024:10271-1

openSUSE-SU-2024:10529-1

openSUSE-SU-2024:11127-1

Related

Withdrawn

2026-01-27T04:12:24.444873Z

Published

2014-03-25T13:25:21Z

Modified

2026-01-27T04:12:24.444873Z

Summary

[none]

Details

The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack.

References

Affected packages