Wind River Support Network

HomeDefectsLINCD-11853
Fixed

LINCD-11853 : Security Advisory - go - CVE-2023-24532

Created: Feb 23, 2023    Updated: Apr 27, 2023
Resolved Date: Apr 3, 2023
Found In Version: 10.20.6.0
Fix Version: 10.23.17.0
Severity: Standard
Applicable for: Wind River Linux CD
Component/s: Userspace

Description

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.

https://nvd.nist.gov/vuln/detail/CVE-2023-24532

CVEs


Live chat
Online