In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).
References
Link | Resource |
---|---|
https://botan.randombit.net/news.html | Release Notes Vendor Advisory |
https://github.com/randombit/botan/compare/2.17.2...2.17.3 | Patch Third Party Advisory |
https://github.com/randombit/botan/pull/2549 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-02-22T01:57:58
Updated: 2021-02-22T01:57:58
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24115
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-22T02:15:14.180
Modified: 2021-02-26T12:38:31.377
Link: CVE-2021-24115
JSON object: View
Redhat Information
No data.
CWE