The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7438