{"id":"CVE-2017-1000412","details":"Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.","modified":"2026-03-14T14:24:29.239275Z","published":"2018-01-02T17:29:00.227Z","references":[{"type":"ADVISORY","url":"https://github.com/OP-TEE/optee_os/blob/2.5.0/CHANGELOG.md"},{"type":"ADVISORY","url":"https://github.com/OP-TEE/optee_os/pull/1610"},{"type":"ADVISORY","url":"https://www.op-tee.org/security-advisories/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/OP-TEE/optee_os","events":[{"introduced":"0"},{"last_affected":"702609a7a5ff8c05ab54bc967d762f1acf18fd9d"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.4.0"}]}}],"versions":["0.1.0","0.2.0","0.3.0","1.0.0","1.0.0-rc1","1.0.0-rc2","1.0.1","1.1.0","2.0.0","2.1.0","2.2.0","2.3.0","2.4.0","20160825-for-lmg"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000412.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}