Security update for mbedtls SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2021:0397-1 Final 1 1 2021-03-09T05:04:58Z current 2021-03-09T05:04:58Z 2021-03-09T05:04:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mbedtls This update for mbedtls fixes the following issues: - mbedtls was updated to version 2.16.9 - CVE-2020-10932: Fixed side channel in ECC code that allowed an adversary with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave) to fully recover an ECDSA private key (boo#1181468). This update was imported from the openSUSE:Leap:15.2:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2021-397 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/24S6SRIXKQUW53S4LWIAJUR5ZBOCJPEA/ E-Mail link for openSUSE-SU-2021:0397-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1181468 SUSE Bug 1181468 https://www.suse.com/security/cve/CVE-2020-10932/ SUSE CVE CVE-2020-10932 page SUSE Package Hub 15 SP2 libmbedcrypto3-2.16.9-bp152.2.3.1 libmbedcrypto3-64bit-2.16.9-bp152.2.3.1 libmbedtls12-2.16.9-bp152.2.3.1 libmbedtls12-64bit-2.16.9-bp152.2.3.1 libmbedx509-0-2.16.9-bp152.2.3.1 libmbedx509-0-64bit-2.16.9-bp152.2.3.1 mbedtls-devel-2.16.9-bp152.2.3.1 libmbedcrypto3-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 libmbedcrypto3-64bit-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 libmbedtls12-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 libmbedtls12-64bit-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 libmbedx509-0-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 libmbedx509-0-64bit-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 mbedtls-devel-2.16.9-bp152.2.3.1 as a component of SUSE Package Hub 15 SP2 An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by (1) reconstructing the projective coordinate of the result of scalar multiplication by exploiting side channels in the conversion to affine coordinates; (2) using an attack described by Naccache, Smart, and Stern in 2003 to recover a few bits of the ephemeral scalar from those projective coordinates via several measurements; and (3) using a lattice attack to get from there to the long-term ECDSA private key used for the signatures. Typically an attacker would have sufficient access when attacking an SGX enclave and controlling the untrusted OS. CVE-2020-10932 SUSE Package Hub 15 SP2:libmbedcrypto3-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:libmbedcrypto3-64bit-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:libmbedtls12-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:libmbedtls12-64bit-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:libmbedx509-0-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:libmbedx509-0-64bit-2.16.9-bp152.2.3.1 SUSE Package Hub 15 SP2:mbedtls-devel-2.16.9-bp152.2.3.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/24S6SRIXKQUW53S4LWIAJUR5ZBOCJPEA/ https://www.suse.com/security/cve/CVE-2020-10932.html CVE-2020-10932 https://bugzilla.suse.com/1181468 SUSE Bug 1181468