Описание
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors, a different vulnerability than CVE-2015-8803.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.2-1 |
| esm-infra-legacy/trusty | not-affected | 2.7.1-1ubuntu0.1 |
| esm-infra/xenial | not-affected | 3.2-1 |
| precise | not-affected | code not present |
| precise/esm | DNE | precise was not-affected [code not present] |
| trusty | released | 2.7.1-1ubuntu0.1 |
| trusty/esm | not-affected | 2.7.1-1ubuntu0.1 |
| upstream | released | 3.2 |
| vivid | ignored | end of life |
| vivid/stable-phone-overlay | ignored | end of life |
Показывать по
Ссылки на источники
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors, a different vulnerability than CVE-2015-8803.
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors, a different vulnerability than CVE-2015-8803.
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not p ...
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors, a different vulnerability than CVE-2015-8803.
Уязвимость криптографической библиотеки Nettle, позволяющая нарушителю повлиять на целостность, доступность и конфиденциальность информации
7.5 High
CVSS2
9.8 Critical
CVSS3