pyquorum: Timing side‑channel in mul_mod
Description
Published to the GitHub Advisory Database
May 6, 2026
Reviewed
May 6, 2026
Published by the National Vulnerability Database
May 13, 2026
Last updated
May 14, 2026
Impact
The
mul_modfunction implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand (the exponent). An attacker who can measure the time of secret‑sharing operations (e.g., via a remote service) could progressively recover the values of shares, ultimately leading to secret reconstruction.Patches
https://github.com/svvqt/pyquorum/releases/tag/v0.2.1
References