CVE-2022-46392

2022-12-1523:15:10

Debian Security Bug Tracker

security-tracker.debian.org

mbed tls

security issue

rsa privatekey

memory accesses

operating system

secure enclave

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

44.2%

JSON

An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. An adversary with access to precise enough information about memory accesses (typically, an untrusted operating system attacking a secure enclave) can recover an RSA private key after observing the victim performing a single private-key operation, if the window size (MBEDTLS_MPI_WINDOW_SIZE) used for the exponentiation is 3 or smaller.

OSVersionArchitecturePackageVersionFilename
Debian12allmbedtls< 2.28.2-1mbedtls_2.28.2-1_all.deb
Debian11allmbedtls<= 2.16.9-0.1mbedtls_2.16.9-0.1_all.deb
Debian999allmbedtls< 2.28.2-1mbedtls_2.28.2-1_all.deb
Debian13allmbedtls< 2.28.2-1mbedtls_2.28.2-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	mbedtls	< 2.28.2-1	mbedtls_2.28.2-1_all.deb
Debian	11	all	mbedtls	<= 2.16.9-0.1	mbedtls_2.16.9-0.1_all.deb
Debian	999	all	mbedtls	< 2.28.2-1	mbedtls_2.28.2-1_all.deb
Debian	13	all	mbedtls	< 2.28.2-1	mbedtls_2.28.2-1_all.deb