Western Digital Sweet B

Findings · 6

1. 1 Assembly does not work in all build configurations Medium
2. 2 Use of libc functions that may not be constant time Low
3. 3 Enabling of SB_DEBUG_ASSERTS violates constant time behavior Low
4. 4 HMAC_DRBG may lack backtracking resistance Low
5. 5 Use of functions on the SDL List of Banned Functions Informational
6. 6 API for ECDSA signatures does not enforce secure message digests Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.