CVE

CVE-2016-8871 (botan)

CVE-2016-8871 (botan)

In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding options had a detectable timing channel which could given sufficient queries be used to recover plaintext, aka an "OAEP side channel" attack.

Source: CVE-2016-8871 (botan)

Exit mobile version