[FREEBSD:742279D6-BDBE-11ED-A179-2B68E9D12706] go -- crypto/elliptic: incorrect P-256 ScalarMult and ScalarBaseMult results
Severity
Medium
Affected Packages
2
CVEs
1
The Go project reports:
crypto/elliptic: incorrect P-256 ScalarMult and
ScalarBaseMult results
The ScalarMult and ScalarBaseMult methods of the P256
Curve may return an incorrect result if called with some
specific unreduced scalars (a scalar larger than the
order of the curve).
Package | Affected Version |
---|---|
pkg:freebsd/go120 | < 1.20.2 |
pkg:freebsd/go119 | < 1.19.7 |
- ID
- FREEBSD:742279D6-BDBE-11ED-A179-2B68E9D12706
- Severity
- medium
- Severity from
- CVE-2023-24532
- URL
- http://vuxml.freebsd.org/freebsd/742279d6-bdbe-11ed-a179-2b68e9d12706.html
- Published
-
2023-02-22T00:00:00
(19 months ago) - Modified
-
2023-03-08T00:00:00
(18 months ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
FreeBSD VuXML | https://groups.google.com/g/golang-dev/c/3wmx8i5WvNY/m/AEOlccrGAwAJ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |