GHSA-hrjv-pf36-jpmr

Опубликовано: 18 авг. 2022

Источник: github

Github: Прошло ревью

Описание

oqs's Post-Quantum Key Encapsulation Mechanism SIKE broken

Wouter Castryck and Thomas Decru presented an efficient key recovery attack on the SIDH protocol. As a result, the secret key of SIKEp751 can be recovered in a matter of hours. The SIKE and SIDH schemes will be removed from oqs 0.7.2.

An efficient key recovery attack on SIDH (preliminary version)

Ссылки

https://github.com/open-quantum-safe/liboqs-rust/pull/151
https://rustsec.org/advisories/RUSTSEC-2022-0045.html

Пакеты

Наименование

oqs

rust

Затронутые версииВерсия исправления

< 0.7.2

0.7.2