logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-8804

Description

x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-384 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors.


Affected Software


CPE Name Name Version
nettle_project:nettle nettle project nettle 3.1.1
opensuse:leap opensuse leap 42.1
opensuse:opensuse opensuse 13.2
canonical:ubuntu_linux canonical ubuntu linux 14.04
opensuse:opensuse opensuse 13.1
canonical:ubuntu_linux canonical ubuntu linux 15.10

Related