QwikSec

Security Database

CVE

CWE

Training

CVE-2019-16910

Published: Sep 26, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2019-10

FEDORA-2019-1240f0fe43

vendor-advisory

https://github.com/ARMmbed/mbedtls/commit/298a43a77ec0ed2c19a8c924ddd8571ef3e65dfd

https://github.com/ARMmbed/mbedtls/commit/33f66ba6fd234114aa37f0209dac031bb2870a9b

FEDORA-2019-07940971b2

vendor-advisory

FEDORA-2019-89891f3e4a

vendor-advisory

[debian-lts-announce] 20221225 [SECURITY] [DLA 3249-1] mbedtls security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.