EUVD-2020-17720

Malware in sbrugna...

Noise-Java Out-of-Bounds Access Vulnerability (CNVD-2020-52372)

Noise-Java is a plain Java implementation of the Noise protocol. An out-of-bounds access vulnerability exists in ChaChaPolyCipherState.encryptWithAd in Noise-Java 2020-08-27 and earlier versions. No detailed vulnerability details are provided at this time...

Noise-Java Out-of-Bounds Access Vulnerability (CNVD-2020-52373)

Noise-Java is a plain Java implementation of the Noise protocol. An out-of-bounds access vulnerability exists in AESGCMFallbackCipherState.encryptWithAd in Noise-Java 2020-08-27 and earlier versions. No detailed vulnerability details are provided at this time...

CVE-2020-25021

An issue was discovered in Noise-Java through 2020-08-27. ChaChaPolyCipherState.encryptWithAd allows out-of-bounds access...

CVE-2020-25021

CVE-2020-25021 affects Noise-Java: ChaChaPolyCipherState.encryptWithAd() contains incomplete/missing boundary checks, enabling out-of-bounds access. Descriptions across sources indicate potential out-of-bounds reads/writes when parameters like plaintextOffset, ciphertextOffset, or length are extr...