11 matches found
CVE-2024-37880
The Kyber reference implementation before 9b8d306, when compiled by LLVM Clang through 18.x with some common optimization options, has a timing side channel that allows attackers to recover an ML-KEM 512 secret key in minutes. This occurs because polyfrommsg in poly.c does not prevent Clang from...
CVE-2024-37880
The Kyber reference implementation before 9b8d306, when compiled by LLVM Clang through 18.x with some common optimization options, has a timing side channel that allows attackers to recover an ML-KEM 512 secret key in minutes. This occurs because polyfrommsg in poly.c does not prevent Clang from...
CVE-2024-37880
The Kyber reference implementation before 9b8d306, when compiled by LLVM Clang through 18.x with some common optimization options, has a timing side channel that allows attackers to recover an ML-KEM 512 secret key in minutes. This occurs because polyfrommsg in poly.c does not prevent Clang from...
CVE-2024-37880
The CVE affects the Kyber reference implementation prior to 9b8d306. The vulnerability is a timing side channel where poly_frommsg in poly.c can yield a vulnerable secret-dependent branch when compiled with LLVM Clang (through 18.x) with common optimizations, enabling attackers to recover an ML-K...
llvm:clang-fuzzer: Segv on unknown address in clang::Expr::skipRValueSubobjectAdjustments
Detailed Report: https://oss-fuzz.com/testcase?key=4893097812295680 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Expr::skipRValueSubobjectAdjustments...
llvm:clang-fuzzer: Segv on unknown address in clang::FunctionProtoType::FunctionProtoType
Detailed Report: https://oss-fuzz.com/testcase?key=5650857535471616 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::FunctionProtoType::FunctionProtoType...
llvm:clang-fuzzer: Segv on unknown address in clang::Sema::getCurBlock
Detailed Report: https://oss-fuzz.com/testcase?key=5718959311814656 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Sema::getCurBlock...
llvm:clang-fuzzer: Segv on unknown address in clang::Sema::getCurLambda
Detailed Report: https://oss-fuzz.com/testcase?key=5639017945366528 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Sema::getCurLambda...
llvm:clang-fuzzer: Segv on unknown address in clang::CXXRecordDecl::data
Detailed Report: https://oss-fuzz.com/testcase?key=5673340807413760 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::CXXRecordDecl::data getDefaultInitValue...
llvm:clang-fuzzer: Segv on unknown address in clang::Decl::AccessDeclContextSanity
Detailed Report: https://oss-fuzz.com/testcase?key=5644750535524352 Project: llvm Fuzzing Engine: libFuzzer Fuzz Target: clang-fuzzer Job Type: libfuzzermsanllvm Platform Id: linux Crash Type: Segv on unknown address Crash Address: Crash State: clang::Decl::AccessDeclContextSanity LookupDirect...
BST (Binary String Toolkit) - Quickly And Easily Convert Binary Strings For All Your Exploit Development Needs
The Binary String Toolkit or BST for short is a rather simple utility to convert binary strings to various formats suitable for later inclusions in source codes, such as those used to develop exploits in the security field. Features Dump files content to standard output in a binary string format...