OpenSSL have published a security advisory. Here's how it affects BoringSSL:
| CVE | Summary | Severity in OpenSSL | Impact to BoringSSL |
|---|---|---|---|
| CVE-2018-0737 | Cache timing vulnerability in RSA Key Generation | Low | Fixed independently in March |
The root cause in OpenSSL, the error-prone BN_FLG_CONSTTIME pattern was removed in BoringSSL some time ago, so the issues stemming from the code pattern do not impact BoringSSL.
Of the particular timing leaks in RSA key generation, BoringSSL fixed the second some time ago. The others affected BoringSSL until recently. We had recently independently rewritten RSA key generation to address these and additional side channels. This work was completed by the end of March.