VYPR

PyPI package

wolfcrypt

pkg:pypi/wolfcrypt

Vulnerabilities (1)

  • CVE-2019-13628Oct 3, 2019
    affected < 4.1.0fixed 4.1.0

    wolfSSL and wolfCrypt 4.0.0 and earlier (when configured without --enable-fpecc, --enable-sp, or --enable-sp-math) contain a timing side channel in ECDSA signature generation. This allows a local attacker, able to precisely measure the duration of signature operations, to infer i