CVE-2026-44368 PyQuorum: Timing side‑channel in mul_mod

PyQuorum is a cryptographic library for secret sharing and key management. Prior to 0.2.1, the mulmod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand the exponent. An attacker who can measure the time of...

CVE-2026-44368

PyQuorum is a cryptographic library for secret sharing and key management. Prior to 0.2.1, the mulmod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand the exponent. An attacker who can measure the time of...

PyQuorum 安全漏洞

PyQuorum is an encryption library for key management and secret sharing developed by svvqt individuals. Versions of PyQuorum prior to 0.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the mulmod function, which implemented multiplication through binary expansion loops...

GHSA-7R92-3JGR-R65Q pyquorum: Timing side‑channel in mul_mod

Impact The mulmod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand the exponent. An attacker who can measure the time of secret‑sharing operations e.g., via a remote service could progressively recover the valu...

pyquorum: Timing side‑channel in mul_mod

Impact The mulmod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand the exponent. An attacker who can measure the time of secret‑sharing operations e.g., via a remote service could progressively recover the valu...

Timing Attack

Overview pyquorum is a Cryptographic library for secret sharing and key management, powered by Rust Affected versions of this package are vulnerable to Timing Attack via mulmod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the...

PT-2026-5030

Name of the Vulnerable Software and Affected Versions soroban-fixed-point-math versions 1.3.0 through 1.4.0 Description The mulDivx, y, z function in soroban-fixed-point-math incorrectly handles cases where both the intermediate product x y and the divisor z are negative. The logic incorrectly...

EUVD-2025-143365

Malicious code in anidata-hauli-mul npm...

CVE-2022-50580 blk-throttle: prevent overflow while calculating wait time

In the Linux kernel, the following vulnerability has been resolved: blk-throttle: prevent overflow while calculating wait time There is a problem found by code review in tgwithinbpslimit that 'bpslimit jiffyelapsedrnd' might overflow. Fix the problem by calling mulu64u64divu64 instead...

MAL-2025-12433 Malicious code in @zalastax/nolb-mul_ (npm)

The package @zalastax/nolb-mul was found to contain malicious code...

Malicious code in @zalastax/nolb-mul_ (npm)

The package @zalastax/nolb-mul was found to contain malicious code...

Malicious code in @zalastax/nolb-mul- (npm)

The package @zalastax/nolb-mul- was found to contain malicious code...

MAL-2025-12431 Malicious code in @zalastax/nolb-mul (npm)

The package @zalastax/nolb-mul was found to contain malicious code...

MAL-2025-12432 Malicious code in @zalastax/nolb-mul- (npm)

The package @zalastax/nolb-mul- was found to contain malicious code...

Malicious code in @zalastax/nolb-mul (npm)

The package @zalastax/nolb-mul was found to contain malicious code...

CVE-2023-25670

TensorFlow is an open source platform for machine learning. Versions prior to 2.12.0 and 2.11.1 have a null point error in QuantizedMatMulWithBiasAndDequantize with MKL enabled. A fix is included in TensorFlow version 2.12.0 and version 2.11.1...

CVE-2024-53107

CVE-2024-53107 refers to a Linux kernel vulnerability in fs/proc/task_mmu that could allow an integer overflow during pagemap_scan_get_args() due to the arg->vec_len value being used in a multiplication by sizeof(struct page_region). The fix changes the calculation to use size_mul() and adds s...

CVE-2024-53107 fs/proc/task_mmu: prevent integer overflow in pagemap_scan_get_args()

In the Linux kernel, the following vulnerability has been resolved: fs/proc/taskmmu: prevent integer overflow in pagemapscangetargs The "arg-veclen" variable is a u64 that comes from the user at the start of the function. The "arg-veclen sizeofstruct pageregion" multiplication can lead to integer...

CVE-2024-53107 fs/proc/task_mmu: prevent integer overflow in pagemap_scan_get_args()

In the Linux kernel, the following vulnerability has been resolved: fs/proc/taskmmu: prevent integer overflow in pagemapscangetargs The "arg-veclen" variable is a u64 that comes from the user at the start of the function. The "arg-veclen sizeofstruct pageregion" multiplication can lead to integer...

PT-2024-18918 · Fastecdsa · Fastecdsa

Name of the Vulnerable Software and Affected Versions: fastecdsa versions prior to 2.3.2 Description: The issue is related to the use of an uninitialized variable on the stack, specifically via the curvemath mul function in src/curveMath.c. This variable is used and interpreted as a user-defined...