Note:
This project will be discontinued after December 13, 2021. [more]
2019-04-28
auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.
Products | Dhcpcd |
Type | Cryptographic Issues (CWE-310) |
First patch | - None (likely due to unavailable code) |
Patches |
• https://roy.marples.name/git/dhcpcd.git/commit/?id=aee631aadeef4283c8a749c1caf77823304acf5e
• https://roy.marples.name/git/dhcpcd.git/commit/?id=7121040790b611ca3fbc400a1bbcd4364ef57233 |
Links |
• http://www.securityfocus.com/bid/108090
• https://roy.marples.name/archives/dhcpcd-discuss/0002415.html • https://roy.marples.name/git/dhcpcd.git/commit/?id=cfde89ab66cb4e5957b1c4b68ad6a9449e2784da |