Libtom Libtomcrypt
2 CVEs affecting Libtom Libtomcrypt. Latest disclosed: 2018-06-15. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-6129 | High | 7.5 | 2017-02-13 | The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the… |
CVE-2018-12437 | Medium | 4.9 | 2018-06-15 | LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an… |