Raccoon Attack: A timing vulnerability in the TLS 1.2 specification.
– The attack only affects DH-based cipher suites or some DHE-based cipher suites.
– OpenSSL 1.1.1, ECDHE-based cipher suites, and TLS 1.3 aren't affected.
– If exploited, attackers could decrypt all TLS-protected network traffic.
chaos.social – a Fediverse instance for & by the Chaos community