iPerf3 before 3.17, when used with OpenSSL before 3.2.0 as a server with RSA authentication, allows a timing side channel in RSA decryption operations. This side channel could be sufficient for an attacker to recover credential plaintext. It requires the attacker to send a large number of messages for decryption, as described in “Everlasting ROBOT: the Marvin Attack” by Hubert Kario.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | iperf3 | <= 3.12-1+deb12u1 | iperf3_3.12-1+deb12u1_all.deb |
Debian | 11 | all | iperf3 | <= 3.9-1+deb11u1 | iperf3_3.9-1+deb11u1_all.deb |
Debian | 999 | all | iperf3 | < 3.17.1-1 | iperf3_3.17.1-1_all.deb |
Debian | 13 | all | iperf3 | < 3.17.1-1 | iperf3_3.17.1-1_all.deb |