DEBIAN-CVE-2003-0147

DEBIAN-CVE-2003-0147 PUBLISHED

OpenSSL does not use RSA blinding by default, which allows local and remote attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of different integer multiplication algorithms ("Karatsuba" and normal).

Affected Products

Vendor	Product	Versions
Debian:11	openssl	0, 0, 0
Debian:13	openssl	0, 0, 0
Debian:14	openssl	0, 0, 0
Debian:12	openssl	0, 0, 0

Timeline

Mar 31, 2003 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2003-0147 advisory

Open in Interactive Console →