Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
LibreSSL before 2.6.5 and 2.7.x before 2.7.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical host.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LibreSSL 安全漏洞
Vulnerability Description
LibreSSL是OpenBSD项目开发的一个OpenSSL加密软件库的分支,也是安全套接层(SSL)和传输层安全(TLS)协议的开源实现。 LibreSSL 2.6.5之前版本和2.7.4之前的2.7.x版本中存在安全漏洞。攻击者可通过访问本地设备或同一物理主机上的不同虚拟机利用该漏洞获取密钥。
CVSS Information
N/A
Vulnerability Type
N/A