Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:36 p.m.13 views

CVE-2026-41509

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

9.8CVSS5.7AI score0.0034EPSS
Exploits0References1
NVD
NVD
added 2026/05/08 2:16 p.m.31 views

CVE-2026-41509

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

9.8CVSS0.0034EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 1:47 p.m.17 views

CVE-2026-41509

The CVE-2026-41509 entry concerns the CROSS implementation of the CROSS post-quantum signature algorithm. A buffer overflow in crypto_sign_open() was caused by an underflow of the length field (mlen) before commit fc6b7e7. This underflow vulnerability could enable an overflow during signature ver...

9.8CVSS6AI score0.0034EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/08 1:47 p.m.14 views

CVE-2026-41509 Integer underflow in crypto_sign_open() leads to buffer overflow

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

6.9CVSS6AI score0.0034EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/08 1:47 p.m.14 views

EUVD-2026-28598

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

6.9CVSS6AI score0.0034EPSS
Exploits0References2
OSV
OSV
added 2026/05/08 1:47 p.m.4 views

CVE-2026-41509 Integer underflow in crypto_sign_open() leads to buffer overflow

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

6.9CVSS6.1AI score0.0034EPSS
Exploits0References4
Filippo.io
Filippo.io
added 2025/11/01 6:10 p.m.10 views

Claude Code Can Debug Low-level Cryptography

Over the past few days I wrote a new Go implementation of ML-DSA, a post-quantum signature algorithm specified by NIST last summer. I livecoded it all over four days, finishing it on Thursday evening. Except… Verify was always rejecting valid signatures. $ bin/go test crypto/internal/fips140/mlds...

7.2AI score
Exploits0
Rows per page
Query Builder