HSEC-2025-0002 Double Public Key Signing Function Oracle Attack on Ed25519

Double Public Key Signing Function Oracle Attack on Ed25519 The standard specification of Ed25519 message signing involves providing the algorithm with a message and private key. The function will use the private key to compute the public key and sign the message. Some libraries provide a variant...

de.fraunhofer.iem:CryptoAnalysis (>=2.8.1 <=3.1.1), de.fraunhofer.iem:CryptoAnalysis-Android (>=2.8.1 <=3.1.1) +16 more potentially affected by CVE-2024-30172 via org.bouncycastle:bctls-jdk18on (>=1.73 <=1.77)

org.bouncycastle:bctls-jdk18on MAVEN version =1.73, =2.8.1, =2.8.1, =1.0.3, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.1.3, =2.0.0, =1.0.5, =1.0.10 and more Source cves: CVE-2024-30172 Source advisory: OSV:GHSA-M44J-CFRM-G8QC...

TEST HIGH

Lines of code L1 Vulnerability details TEST --- The text was updated successfully, but these errors were encountered: All reactions...

How bitcoin payments unmasked a man who hired a Dark Web contract killer

An Italian citizens apparent attempt to hire a hitman on the Dark Web has been undone by clever analysis of his Bitcoin transactions. The man, who is reported to be an IT worker employed by a major corporation, is alleged to have paid the hitman to assassinate his former girlfriend. What happened...