SB2026040274 - Information disclosure in Mbed TLS and TF-PSA-Crypto

Description

This security bulletin contains information about 1 security vulnerability.

1) Information Exposure Through Timing Discrepancy (CVE-ID: CVE-2025-66442)

The vulnerability allows a remote attacker to disclose sensitive information.

The vulnerability exists due to improper protection against side-channel leakage in padding validation code when processing chosen ciphertexts and measuring decryption timing precisely. A remote attacker can submit crafted ciphertexts and observe precise decryption timing to disclose sensitive information.

This issue affects RSA PKCS#1 v1.5 decryption and one-and-zeros unpadding, and may enable recovery of ciphertext contents but not the key. It is known to occur when TF-PSA-Crypto or Mbed TLS is built with Clang 18 with the LLVM select-optimize feature enabled for 64-bit RISC-V.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

• https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2026-03-compiler-induced-constant-time-violations/
• https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-1/