logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-8804

Description

x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-384 NIST elliptic curve, which allows attackers to have unspecified impact via unknown vectors.


Affected Package


OS OS Version Package Name Package Version
Debian 12 nettle 3.8.1-2
Debian 11 nettle 3.7.3-1
Debian 10 nettle 3.4.1-1+deb10u1
Debian 999 nettle 3.8.1-2

Related