CVE-2023-6258 Information

Description

A security vulnerability has been identified in the pkcs11-provider which is associated with Public-Key Cryptography Standards (PKCS11). If exploited successfully this vulnerability could result in a Bleichenbacher-like security flaw potentially enabling a side-channel attack on PKCS1 1.5 decryption.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2251062 https://github.com/latchset/pkcs11-provider/pull/308