DEBIAN-CVE-2007-3108

DEBIAN-CVE-2007-3108 PUBLISHED

The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to conduct a side-channel attack and retrieve RSA private keys.

Affected Products

Vendor	Product	Versions
Debian:11	openssl	0, 0, 0
Debian:13	openssl	0, 0, 0
Debian:14	openssl	0, 0, 0
Debian:12	openssl	0, 0, 0

Timeline

Aug 8, 2007 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2007-3108 advisory

Open in Interactive Console →