Hello,
We found some secret-dependent control-flows in the latest version of
libgcrypt (1.8.6). Those leakage sites may lead to potential
side-channel attacks. I was wondering if you are interested in fixing those
leakages? If so, could you please share us with the way to report those
side-channel leakages?
Thanks,
Qinkun Bao
We found some secret-dependent control-flows in the latest version of
libgcrypt (1.8.6). Those leakage sites may lead to potential
side-channel attacks. I was wondering if you are interested in fixing those
leakages? If so, could you please share us with the way to report those
side-channel leakages?
Thanks,
Qinkun Bao