QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-45287

Back to search

CVE-2023-45287

Published: Dec 5, 2023

Modified: Feb 13, 2025

PUBLISHED

Description

Before Go 1.20, the RSA based TLS key exchanges used the math/big library, which is not constant time. RSA blinding was applied to prevent timing attacks, but analysis shows this may not have been fully effective. In particular it appears as if the removal of PKCS#1 padding may leak timing information, which in turn could be used to recover session key bits. In Go 1.20, the crypto/tls library switched to a fully constant time RSA implementation, which we do not believe exhibits any timing side channels.

VendorProductVersions

Go standard library

crypto/tls

affected
0 - < 1.20.0

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now