AVG-1441 log
Package | python-m2crypto |
Status | Vulnerable |
Severity | Medium |
Type | private key recovery |
Affected | 0.38.0-3 |
Fixed | Unknown |
Current | 0.41.0-2 [extra] |
Ticket | Create |
Created | Tue Jan 12 17:15:40 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-25657 | Medium | No | Private key recovery | A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed... |