Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS13ajZoLTY0ZmMtMzdtcM4AA4nW
Minerva timing attack on P-256 in python-ecdsa
python-ecdsa has been found to be subject to a Minerva timing attack on the P-256 curve. Using the ecdsa.SigningKey.sign_digest() API function and timing signatures an attacker can leak the internal nonce which may allow for private key discovery. Both ECDSA signatures, key generation, and ECDH operations are affected. ECDSA signature verification is unaffected. The python-ecdsa project considers side channel attacks out of scope for the project and there is no planned fix.
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS13ajZoLTY0ZmMtMzdtcM4AA4nW
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: 3 months ago
Updated: 3 months ago
CVSS Score: 7.4
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Identifiers: GHSA-wj6h-64fc-37mp, CVE-2024-23342
References:
- https://github.com/tlsfuzzer/python-ecdsa/security/advisories/GHSA-wj6h-64fc-37mp
- https://github.com/tlsfuzzer/python-ecdsa/blob/master/SECURITY.md
- https://minerva.crocs.fi.muni.cz/
- https://securitypitfalls.wordpress.com/2018/08/03/constant-time-compare-in-python/
- https://nvd.nist.gov/vuln/detail/CVE-2024-23342
- https://github.com/advisories/GHSA-wj6h-64fc-37mp
Blast Radius: 31.0
Affected Packages
pypi:ecdsa
Dependent packages: 183Dependent repositories: 15,243
Downloads: 10,336,948 last month
Affected Version Ranges: <= 0.18.0
No known fixed version
All affected versions: 0.13.1, 0.13.2, 0.13.3, 0.14.1, 0.16.0, 0.16.1, 0.17.0, 0.18.0