Wind River Support Network

HomeDefectsLIN1018-10378
Not to be fixed

LIN1018-10378 : Security Advisory - go - CVE-2023-24532

Created: Feb 23, 2023    Updated: Nov 2, 2023
Resolved Date: Nov 2, 2023
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.

https://nvd.nist.gov/vuln/detail/CVE-2023-24532
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube