Количество 13
Количество 13
CVE-2021-20305
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability.
CVE-2021-20305
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability.
CVE-2021-20305
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability.
CVE-2021-20305
CVE-2021-20305
A flaw was found in Nettle in versions before 3.7.2, where several Net ...
openSUSE-SU-2021:0635-1
Security update for libnettle
SUSE-SU-2021:1412-1
Security update for libnettle
SUSE-SU-2021:1399-1
Security update for libnettle
RLSA-2021:1206
Important: gnutls and nettle security update
GHSA-6xrq-2ww3-f6h5
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability.
ELSA-2021-1206
ELSA-2021-1206: gnutls and nettle security update (IMPORTANT)
ELSA-2021-1145
ELSA-2021-1145: nettle security update (IMPORTANT)
BDU:2021-02748
Уязвимость функций проверки подписи (ГОСТ DSA, EDDSA и ECDSA) библиотеки Nettle, связанная с недостатками используемых криптографических алгоритмов, позволяющая нарушителю, не прошедшему проверку подлинности, выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-20305 A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability. | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-20305 A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability. | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-20305 A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability. | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад |
 | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад | |
| CVE-2021-20305 A flaw was found in Nettle in versions before 3.7.2, where several Net ... | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад |
 | openSUSE-SU-2021:0635-1 Security update for libnettle | 0% Низкий | почти 5 лет назад | |
| SUSE-SU-2021:1412-1 Security update for libnettle | 0% Низкий | почти 5 лет назад | |
| SUSE-SU-2021:1399-1 Security update for libnettle | 0% Низкий | почти 5 лет назад | |
 | RLSA-2021:1206 Important: gnutls and nettle security update | 0% Низкий | почти 5 лет назад | |
| GHSA-6xrq-2ww3-f6h5 A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an invalid signature, causing an assertion failure or possible validation. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability. | 0% Низкий | больше 3 лет назад | |
| ELSA-2021-1206 ELSA-2021-1206: gnutls and nettle security update (IMPORTANT) | почти 5 лет назад | ||
| ELSA-2021-1145 ELSA-2021-1145: nettle security update (IMPORTANT) | почти 5 лет назад | ||
 | BDU:2021-02748 Уязвимость функций проверки подписи (ГОСТ DSA, EDDSA и ECDSA) библиотеки Nettle, связанная с недостатками используемых криптографических алгоритмов, позволяющая нарушителю, не прошедшему проверку подлинности, выполнить произвольный код | CVSS3: 8.1 | 0% Низкий | почти 5 лет назад |
Уязвимостей на страницу