CVE-2025-22866
Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec
4.0
MEDIUM
CVSS 3.1
EPSS 0.02%
Description
Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.
How to fix CVE-2025-22866
To remediate CVE-2025-22866, upgrade the affected package to a fixed version below.
- —upgrade to 1.22.12 or later
- —no fix listed
- —no fix listed
- —upgrade to 1.24~rc3-1 or later
- —upgrade to 1.22.12 or later
Is CVE-2025-22866 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (5)
- from 0, < 1.22.12, >= 1.23.0-0, < 1.23.6, >= 1.24.0-0, < 1.24.0
- from 0
- from 0
- from 0, < 1.24~rc3-1
- from 0, < 1.22.12, >= 1.23.0-0, < 1.23.6, >= 1.24.0-0, < 1.24.0-rc.3
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.0 | CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |