CVE-2021-37606 – Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can quer …

30 July 2021

Vuln ID: CVE-2021-37606

Published: 2021-07-30 14:15:22Z

Description: Meow hash 0.5/calico does not sufficiently thwart key recovery by an attacker who can query whether there’s a collision in the bottom bits of the hashes of two messages, as demonstrated by an attack against a long-running web service that allows the attacker to infer collisions by measuring timing differences.

Source: NVD.NIST.GOV

Date:

30 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Governments issue alerts after ‘sophisticated’ state-backed actor found exploiting flaws in Cisco security boxes24 April 2024
Smashing Security podcast #369: Keeping the lights on after a ransomware attack24 April 2024
5G Hackathons – Casey Ellis – BTS #2824 April 2024
CoralRaider leverages CDN cache domains in new infostealer campaign24 April 2024
Shouldn’t Teams, Zoom, Slack all interoperate securely for the Feds? Wyden is asking24 April 2024