Description
The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).
Remediation
References
Related Vulnerabilities
WordPress Plugin MapSVG Lite Cross-Site Request Forgery (4.2.4)
Oracle JRE CVE-2014-0448 Vulnerability (CVE-2014-0448)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1432)
WordPress Plugin Battle Suit for Divi Security Bypass (1.10.1)
WordPress Plugin AddToAny Share Buttons Cross-Site Scripting (1.6.6)