The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack.
@Maintainers: is -r2 ready for stabilisation?
(In reply to stanley - Security Padawan from comment #3)
> @Maintainers: is -r2 ready for stabilisation?
r2 differs from r1 only by the fix for this CVE.
feel free to stabilize.
Stable for HPPA PPC64.
Stable on alpha.
Maintainer(s), please cleanup.
Security, please vote.
GLSA Vote: No