Количество 2
Количество 2
CVE-2026-22705
RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. This issue has been patched in version 0.1.0-rc.2.
GHSA-hcp2-x6j4-29j7
RustCrypto: Signatures has timing side-channel in ML-DSA decomposition
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-22705 RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. This issue has been patched in version 0.1.0-rc.2. | CVSS3: 6.4 | 0% Низкий | 10 дней назад |
| GHSA-hcp2-x6j4-29j7 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition | CVSS3: 6.4 | 0% Низкий | 7 дней назад |
Уязвимостей на страницу