Lucene search
+L

12 matches found

nvd
nvd
added 2026/06/25 8:17 p.m.7 views

CVE-2026-10512

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

7.5CVSS0.00263EPSS
Exploits0References2
osv
osv
added 2026/06/25 8:17 p.m.5 views

UBUNTU-CVE-2026-10512

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/06/25 7:58 p.m.7 views

CVE-2026-10512

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

2.3CVSS5.9AI score0.00263EPSS
Exploits0References3Affected Software1
euvd
euvd
added 2026/06/25 7:58 p.m.8 views

EUVD-2026-39552

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

2.3CVSS5.9AI score0.00263EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/25 7:58 p.m.23 views

CVE-2026-10512 X25519 x86_64 assembly final reduction leaves non-canonical field element

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

2.3CVSS0.00263EPSS
Exploits0References2
cve
cve
added 2026/06/25 7:58 p.m.27 views

CVE-2026-10512

The CVE-2026-10512 issue affects the X25519 x86_64 assembly implementation, where the final modular reduction fails to clear the most significant bit, leaving the 255-bit field element non-canonical. Consequently, the computed result from scalar multiplication may be incorrect, potentially yieldi...

7.5CVSS5.9AI score0.00263EPSS
Exploits0References2Affected Software1
alpinelinux
alpinelinux
added 2026/06/25 7:58 p.m.5 views

CVE-2026-10512

The X25519 x8664 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the field prime 2^255 - 19. This can leave the field element in a non-canonical form, producing an incorrect result from the...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Golang-1.15

In Go versions before 1.14.14 and 1.15.x, as well as before 1.15.7, the crypto/elliptic/p224.go file may generate incorrect outputs due to a underflow of the lowest limb during the final complete reduction of the P-224 field...

6.5CVSS6.7AI score0.02689EPSS
Exploits0References1
susecve
susecve
added 2023/02/15 3:49 a.m.5 views

SUSE CVE-2021-3114

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field...

4.8CVSS7.2AI score0.02689EPSS
Exploits0References8
mscve
mscve
added 2021/02/03 8:0 a.m.3 views

In Go before 1.14.14 and 1.15.x before 1.15.7 crypto/elliptic/p224.go can generate incorrect outputs related to an underflow of the lowest limb during the final complete reduction in the P-224 field.

...

6.5CVSS7AI score0.02689EPSS
Exploits0
osv
osv
added 2021/01/26 6:16 p.m.10 views

AZL-79110 CVE-2021-3114 affecting package golang 1.25.7-1

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field...

6.5CVSS6.6AI score0.02689EPSS
Exploits0References1
attackerkb
attackerkb
added 2021/01/26 6:16 p.m.4 views

CVE-2021-3114

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field...

6.5CVSS6.7AI score0.02689EPSS
Exploits0References10
Rows per page
Query Builder