CVE-2019-25003

An issue was discovered in the libsecp256k1 crate before 0.3.1 for Rust. Scalar::check_overflow allows a timing side-channel attack; consequently, attackers can obtain sensitive information.
Configurations

Configuration 1 (hide)

cpe:2.3:a:parity:libsecp256k1:*:*:*:*:*:rust:*:*

History

21 Nov 2024, 04:39

Type Values Removed Values Added
References () https://rustsec.org/advisories/RUSTSEC-2019-0027.html - Third Party Advisory () https://rustsec.org/advisories/RUSTSEC-2019-0027.html - Third Party Advisory

Information

Published : 2020-12-31 10:15

Updated : 2024-11-21 04:39


NVD link : CVE-2019-25003

Mitre link : CVE-2019-25003

CVE.ORG link : CVE-2019-25003


JSON object : View

Products Affected

parity

  • libsecp256k1