Launchpad CVE tracker

CVE 2016-7440

The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences.

Related bugs and status

CVE-2016-7440 (Candidate) is related to these bugs:

Bug #1638125: USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too

		In	Importance	Status
1638125	USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too	mariadb-10.0 (Ubuntu)	High	Fix Released
1638125	USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too	mariadb-10.0 (Ubuntu Yakkety)	High	Fix Released
1638125	USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too	mariadb-10.0 (Ubuntu Zesty)	High	Fix Released
1638125	USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too	mariadb-10.0 (Ubuntu Xenial)	High	Fix Released
1638125	USN-3109-1: MySQL vulnerabilities partially applies to MariaDB too	mariadb-5.5 (Ubuntu Trusty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2016-7440

References