CIRCL 安全漏洞

CIRCL is an open source collection of cryptographic primitives written in Go by Cloudflare. CIRCL has a security vulnerability that stems from the fact that the tkn20 and blindrsa components do not check whether a user-supplied random source returns sufficient randomness...

PT-2023-6901 · Circl · Circl

Name of the Vulnerable Software and Affected Versions: CIRCL versions prior to 1.3.3 Description: The issue arises from insufficient input validation and lack of measures to neutralize instructions in dynamically executed code in the crypto/rand.Read function. This could lead to a predictable...