Lucene search
+L

28 matches found

redhatcve
redhatcve
added 2026/01/13 10:52 p.m.7 views

CVE-2026-22705

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS7AI score0.00173EPSS
Exploits0References1
euvd
euvd
added 2026/01/13 3:10 p.m.6 views

EUVD-2026-1867

RustCrypto: Signatures has timing side-channel in ML-DSA decomposition...

6.4CVSS6.2AI score0.00173EPSS
Exploits0References4
github
github
added 2026/01/13 3:10 p.m.27 views

RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS7AI score0.00173EPSS
Exploits0References6Affected Software1
osv
osv
added 2026/01/13 3:10 p.m.3 views

GHSA-HCP2-X6J4-29J7 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS6.9AI score0.00173EPSS
Exploits0References6
nvd
nvd
added 2026/01/10 7:16 a.m.20 views

CVE-2026-22705

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS0.00173EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/01/10 6:14 a.m.4 views

CVE-2026-22705 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS6.6AI score0.00173EPSS
Exploits0References3
cvelist
cvelist
added 2026/01/10 6:14 a.m.32 views

CVE-2026-22705 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS0.00173EPSS
Exploits0References3
osv
osv
added 2026/01/10 6:14 a.m.5 views

CVE-2026-22705 RustCrypto: Signatures has timing side-channel in ML-DSA decomposition

RustCrypto: Signatures offers support for digital signatures, which provide authentication of data using public-key cryptography. Prior to version 0.1.0-rc.2, a timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature...

6.4CVSS6.8AI score0.00173EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/01/10 12:0 a.m.5 views

RustCrypto: Signatures 安全漏洞

RustCrypto: Signatures is a cryptographic signature algorithm open-sourced by Rust Crypto. A security vulnerability exists in RustCrypto: Signatures versions prior to 0.1.0-rc.2, which stems from the presence of timing side channels in the Decompose algorithm used during ML-DSA signing...

6.4CVSS6.3AI score0.00173EPSS
Exploits0References3
rustsec
rustsec
added 2025/12/12 12:0 p.m.9 views

Timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS6.1AI score0.00173EPSS
Exploits0Affected Software1
osv
osv
added 2025/12/12 12:0 p.m.10 views

RUSTSEC-2025-0144 Timing side-channel in ML-DSA decomposition

Summary A timing side-channel was discovered in the Decompose algorithm which is used during ML-DSA signing to generate hints for the signature. Details The analysis was performed using a constant-time analyzer that examines compiled assembly code for instructions with data-dependent timing...

6.4CVSS6.1AI score0.00173EPSS
Exploits0References3
osv
osv
added 2025/10/05 11:47 p.m.4 views

BIT-PYTORCH-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS7AI score0.00391EPSS
Exploits0References6
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31108

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00391EPSS
Exploits0References6
susecve
susecve
added 2025/09/29 11:23 p.m.3 views

SUSE CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS7.6AI score0.00391EPSS
Exploits0References3
pypa
pypa
added 2025/09/25 3:16 p.m.12 views

PYSEC-2025-202

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS5.8AI score0.00391EPSS
Exploits0References5Affected Software1
osv
osv
added 2025/09/25 3:16 p.m.16 views

DEBIAN-CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS5.3AI score0.00391EPSS
Exploits0References1
nvd
nvd
added 2025/09/25 3:16 p.m.9 views

CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS0.00391EPSS
Exploits0References5
osv
osv
added 2025/09/25 3:16 p.m.8 views

UBUNTU-CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS7.2AI score0.00391EPSS
Exploits0References7
cvelist
cvelist
added 2025/09/25 12:0 a.m.9 views

CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

0.00391EPSS
Exploits0References5
osv
osv
added 2025/09/25 12:0 a.m.6 views

CVE-2025-46153

PyTorch before 3.7.0 has a bernoullip decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d, and nn.Dropout3d for fallbackrandom=True...

5.3CVSS7AI score0.00391EPSS
Exploits0References7
Rows per page
Query Builder