Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by measuring cache usage during an import.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mbed_crypto | Arm | * | 3.1.0 (excluding) |
Mbed_tls | Arm | * | 2.16.5 (excluding) |
Mbedtls | Ubuntu | bionic | * |
Mbedtls | Ubuntu | eoan | * |
Mbedtls | Ubuntu | trusty | * |
Mbedtls | Ubuntu | upstream | * |
Mbedtls | Ubuntu | xenial | * |