Oval Definition:	oval:com.ubuntu.bionic:def:2017147370000000
Revision Date: 2017-09-26 Version: 1 Title: CVE-2017-14737 on Ubuntu 18.04 LTS (bionic) - medium. Description: A cryptographic cache-based side channel in the RSA implementation in Botan before 1.10.17, and 1.11.x and 2.x before 2.3.0, allows a local attacker to recover information about RSA secret keys, as demonstrated by CacheD. This occurs because an array is indexed with bits derived from a secret key. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-14737 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND botan1.10 package in bionic, is related to the CVE in some way and has been fixed (note: '1.10.17-0.1').
BACK