CVE-2025-22866: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec
Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2025-22866?
The severity of CVE-2025-22866 is currently assessed to be low, as the bit leakage is not sufficient for recovery of secret scalars.
How do I fix CVE-2025-22866?
To mitigate CVE-2025-22866, it is recommended to update to the latest version of the affected software where the vulnerability has been addressed.
What impact does CVE-2025-22866 have on the ppc64le architecture?
CVE-2025-22866 causes a small number of bits of secret scalars to be leaked, which may affect the security of applications running on the ppc64le architecture.
Is CVE-2025-22866 present in all versions of the software?
CVE-2025-22866 is specific to certain versions of the software that utilize the vulnerable assembly function; it is essential to check your version for exposure.
What steps can be taken to protect against CVE-2025-22866?
Regularly updating software and monitoring for security patches can help protect against CVE-2025-22866 and similar vulnerabilities.