CVE-2024-26317
In illumos-gate (Illumos) versioned sources from 2024-02-15, a bug in the elliptic curve point addition implementation that uses mixed Jacobian-affine coordinates can produce POINT_AT_INFINITY when a valid result is expected. This flaw enables a man-in-the-middle to interfere with a connection, c...