A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process could use this to extract plain text or, in some cases, downgrade any TLS connections to a vulnerable server.
GnuTLS is vulnerable to Bleichenbacher-like side channel leakage in PKCS#1 1.5 verificati on and padding oracle verification.
Created gnutls tracking bugs for this issue:
Affects: fedora-all [bug 1655389]
Created gnutls30 tracking bugs for this issue:
Affects: epel-6 [bug 1655391]
Created mingw-gnutls tracking bugs for this issue:
Affects: epel-7 [bug 1655392]
Affects: fedora-all [bug 1655390]