[prev in list] [next in list] [prev in thread] [next in thread]
List: openssl-users
Subject: Re: [openssl-users] CVE-201-0737
From: Scott Neugroschl <scott_n () xypro ! com>
Date: 2018-04-16 18:18:34
Message-ID: D358E5B1511A314F8160ADC6F3754987010B4BA625 () XYSVEX02 ! XYPRO-23 ! LOCAL
[Download RAW message or body]
On 16/04/18 0935PDT, Matt Caswell wrote:
> On 16/04/18 16:59, Scott Neugroschl wrote:
> > Hi,
> >
> > I'm trying to make sure I have grokked this advisory properly.
> >
> > The advisory says this is a cache timing side channel attack on key generation. \
> > So am I correct in assuming that a potential attacker must
> > 1) Already have access to the system
> > 2) Have sufficient privilege to be able to access cache info
>
> Correct.
Thanks, Matt!
---
Scott Neugroschl | XYPRO Technology Corporation
4100 Guardian Street | Suite 100 |Simi Valley, CA 93063 | Phone 805 583-2874|Fax 805 \
583-0124 |
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic