Information Disclosure
rsa is vulnerable to information disclosure. The vulnerability exists as rsa ignores prepended \0 bytes during the decryption of a ciphertext in PKCS1v15, where it is supposed to have failed, allowing the interference that this library is used for cryptography...