3 matches found
nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function
A side-channel flaw was found in NSS, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this...
Nettle has an unspecified vulnerability (CNVD-2016-01310)
Nettle is a library of basic cryptographic functions. A security vulnerability exists in the x8664/ecc-384-modp.asm file in versions prior to Nettle 3.2, which stems from a failure of the program to properly handle rounding transfers when implementing P-384 NIST elliptic curves. An attacker can...
lib32-nettle: improper cryptographic calculations
CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 improper cryptographic calculations It has been discovered that multiple carry propagation bugs are producing wrong results in calculations. They affect the NIST P-256 and P-384 curves. The P-256 bug is in the C code and affects multiple architectures...