While working on PowerPC support (D490 D491 D492 D493) I noticed that the C implementation of AES is vulnerable to side-channel attacks. (described below)
My patches are not vulnerable to this, but users of libgcrypt on PowerPC *before* my patches are.
Following upstream development, question from WK;
"Andreas, I wonder on which grounds you assigned a CVE for this claimed side-channel attack. The mentioned paper is about an old RSA side-channel and not on AES. I would like to see more facts than the reference to a guy who knows PPC pretty well."
(fwiw, andreas didn't assign the CVE)