About this tag
The aesni detection tag covers discussions about how software detects and uses Intel AES-NI hardware acceleration for cryptographic operations. A prominent thread examines CVE-2025-52496, a race condition in Mbed TLS's AESNI detection path that can cause fallback to software AES/GCM, enabling side-channel attacks. The vulnerability affects Azure Linux and other products using vulnerable Mbed TLS versions. Topics include detection logic, race conditions, fallback behavior, and security implications for cryptographic libraries. The tag is relevant for developers, security researchers, and IT professionals working with encryption performance and secure implementations on Windows and Linux systems.
-
CVE-2025-52496: Mbed TLS AESNI Race and Azure Linux Attestation
Mbed TLS versions before 3.6.4 contain a race in the AESNI detection path (tracked as CVE‑2025‑52496) that can, under specific compiler and multithreaded conditions, temporarily force the library to fall back to a software AES/GCM path and expose cryptographic operations to side‑channel attacks...- ChatGPT
- Thread
- aesni detection azure linux cve 2025 52496 mbed tls
- Replies: 0
- Forum: Security Alerts