The CBC padding operations were not constant time and as a result would leak the length of the plaintext values which were being padded to an attacker running a side channel attack via shared resources such as cache or branch predictor. No information about the contents was leaked, but the length alone might be used to make inferences about the contents. This issue affects TLS CBC ciphersuites as well as CBC encryption using PKCS7 or other similar padding mechanisms. In all cases, the unpadding operations were already constant time and are not affected. Fixed in 2.14.0, all prior versions affected.
Created botan tracking bugs for this issue: Affects: epel-all [bug 1849747] Affects: fedora-all [bug 1849744] Created botan2 tracking bugs for this issue: Affects: epel-8 [bug 1849746] Affects: fedora-all [bug 1849745]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.