Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:RUSTSEC-2019-0027
HistoryOct 14, 2019 - 12:00 p.m.

Flaw in Scalar::check_overflow allows side-channel timing attack

2019-10-1412:00:00
Google
osv.dev
7

0.002 Low

EPSS

Percentile

53.8%

JSON

Versions of libsecp256k1 prior to 0.3.1 did not execute
Scalar::check_overflow in constant time.

This allows an attacker to potentially leak information via a timing attack.

The flaw was corrected by modifying Scalar::check_overflow to execute in
constant time.

CPENameOperatorVersion
libsecp256k1lt0.3.1

Related

osv 2
rustsec 1
github 1
alpinelinux 1
nvd 1
cve 1
prion 1
cvelist 1
osv
osv
libsecp256k1 contains side-channel timing attack
2021-08-25 20:46:46
CVE-2019-25003
2020-12-31 10:15:14
rustsec
rustsec
Flaw in Scalar::check_overflow allows side-channel timing attack
2019-10-14 12:00:00
github
github
libsecp256k1 contains side-channel timing attack
2021-08-25 20:46:46
alpinelinux
alpinelinux
CVE-2019-25003
2020-12-31 10:15:00
nvd
nvd
CVE-2019-25003
2020-12-31 10:15:14
cve
cve
CVE-2019-25003
2020-12-31 10:15:14
prion
prion
Information disclosure
2020-12-31 10:15:00
cvelist
cvelist
CVE-2019-25003
2020-12-31 08:32:57

0.002 Low

EPSS

Percentile

53.8%

JSON
Related for OSV:RUSTSEC-2019-0027
osv2rustsec1github1alpinelinux1nvd1cve1prion1cvelist1