K000138649 : GnuTLS vulnerability CVE-2023-5981

Security Advisory Description A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. (CVE-2023-5981) Impact Attackers can exploit variations in timing to indirectly infer certain details about the function's internal operations, impacting…Read More