LIN10-8179 : Security Advisory - go - CVE-2021-3114
Created: Jan 22, 2021
Updated: Apr 1, 2021
Resolved Date: Apr 1, 2021
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace
Description
In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field.
https://nvd.nist.gov/vuln/detail/CVE-2021-3114
