Description
The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).
Remediation
References
Related Vulnerabilities
WordPress Plugin Shortcode for Font Awesome Cross-Site Scripting (1.4)
WordPress Plugin File Manager Cross-Site Request Forgery (3.0.1)
SharePoint CVE-2022-41122 Vulnerability (CVE-2022-41122)
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)
Oracle Database Server CVE-2010-0851 Vulnerability (CVE-2010-0851)