Bug 1591904 (CVE-2018-12437)

Summary:	CVE-2018-12437 libtomcrypt: memory-cache side-channel attack on ECDSA signatures
Product:	[Other] Security Response	Reporter:	Laura Pardo <lpardo>
Component:	vulnerability	Assignee:	Red Hat Product Security <security-response-team>
Status:	CLOSED DUPLICATE	QA Contact:
Severity:	medium	Docs Contact:
Priority:	medium
Version:	unspecified	CC:	cpelland, dajohnso, dclarizi, gblomqui, gmccullo, gtanzill, hhudgeon, jcammara, jeremy, jfrey, jhardy, jprause, negativo17, obarenbo, pcahyna, pebarbos, roliveri, simaishi, tkuratom
Target Milestone:	---	Keywords:	Security
Target Release:	---
Hardware:	All
OS:	Linux
Whiteboard:
Fixed In Version:		Doc Type:	If docs needed, set a value
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:	2018-07-12 17:56:37 UTC	Type:	---
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:	1591905, 1591906
Bug Blocks:	1591913

Description Laura Pardo 2018-06-15 18:14:21 UTC

LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.


References:
https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/

Comment 1 Laura Pardo 2018-06-15 18:14:58 UTC

Created libtomcrypt tracking bugs for this issue:

Affects: epel-all [bug 1591906]
Affects: fedora-all [bug 1591905]

Comment 2 Pedro Yóssis Silva Barbosa 2018-07-12 17:56:37 UTC


*** This bug has been marked as a duplicate of bug 1591163 ***

Comment 3 Doran Moppert 2020-02-10 04:33:29 UTC

Statement:

This flaw was found to be a duplicate of CVE-2018-0495. Please see https://access.redhat.com/security/cve/CVE-2018-0495 for information about affected products and security errata.