Description: When cryptlib is compiled with the support for RSA key exchange ciphersuites in TLS (by setting the USE_RSA_SUITES define), it will be vulnerable to the timing variant of the Bleichenbacher attack. Attacker that is able to perform a large number of connection to the server will be able to decrypt RSA ciphertexts or forge signatures using server's certificate.
Created cryptlib tracking bugs for this issue: Affects: epel-all [bug 2256520] Affects: fedora-all [bug 2256519]