12 matches found
CVE-2016-9939
CVE-2016-9939 affects Crypto++ (Crypto++/libcrypto++) 5.6.4, where the ASN.1 BER decoding routine allocates a memory block based on the length field and may zero the memory if contents are insufficient, causing a noticeable delay during the wipe for large allocations. This concrete detail is repe...
CVE-2019-14318
Crypto++ has a timing side-channel in ECDSA signature generation in version 8.3.0 and earlier. The underlying issue is non-constant-time scalar multiplication: ecp.cpp leaks scalar bit-length on prime-field curves and algebra.cpp leaks more on binary-field curves, enabling an attacker measuring d...
CVE-2017-9434
CVE-2017-9434 affects Crypto++ (cryptopp) up to version 5.6.5, with an out-of-bounds read in the Zinflate class used by Gunzip/Inflator. The root cause is a malformed handling in the zinflate.cpp Inflator filter, which could disclose data when decompressing input. Public advisories in multiple di...
CVE-2021-40530
Crypto++ ElGamal in versions up to 8.5 is vulnerable to a cross-configuration OpenPGP attack that can recover plaintext when the receiver’s key prime/generator interact with the sender’s ephemeral exponents during library interoperation. Impact: partial confidentiality loss. Mageia MGASA-2021-046...
CVE-2022-48570
Crypto++ as of 8.4 (and earlier) contains a timing side‑channel vulnerability in ECDSA signature generation. The issue arises in FixedSizeAllocatorWithCleanup, which could write outside the allocated memory if the allocation is not 16‑byte aligned, and it notes that the fix for CVE-2019-14318 was...
CVE-2016-7420
Crypto++ (cryptopp) up to version 5.6.4 is vulnerable to information disclosure due to missing documentation of the NDEBUG compile-time switch to disable asserts, enabling context-dependent attackers to access sensitive data from process memory after an assertion failure (e.g., core dumps). Upstr...
CVE-2016-3995
Crypto++ (libcryptopp) timing-attack vulnerability CVE-2016-3995 affects Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec::ProcessAndXorBlock prior to version 5.6.4, where the timing-protection code could be optimized out by compilers. This could allow an attacker to perform timing attacks. Th...
CVE-2016-7544
Crypto++ 5.6.4 is affected: it relies on Microsoft stack-based _malloca/_freea to align a table, and if the table is realloc’d the wrong pointer could be freed. This can impact memory management and may affect availability as described in CVE-2016-7544. Connected records show a Fedora update upgr...
CVE-2023-50980
CVE-2023-50980 affects Crypto++ (gf2n.cpp) up to version 8.9.0. The vulnerability allows a DoS (application crash) via DER-encoded public-key data for an F(2^m) curve when the polynomial term degrees are not strictly decreasing. Multiple advisories (OpenSUSE, SUSE, Astra Linux, Nessus references)...
CVE-2021-43398
Crypto++ (Cryptopp) versions 8.6.0 and earlier have a timing leakage in MakePublicKey(), with execution time correlated to private key length. This could enable timing-based information disclosure, though the vendor and third parties dispute the severity and attribute differences to an intentiona...
CVE-2023-50979
CVE-2023-50979 affects Crypto++ (cryptopp) up to version 8.9.0, introducing a Marvin side-channel leakage during decryption with PKCS#1 v1.5 padding. Multiple connected advisories confirm affected packages (e.g., libcryptopp/libcryptopp-devel) and note patches are available: openSUSE/SUSE advisor...
CVE-2023-50981
CVE-2023-50981 affects Crypto++ (cryptopp) up to version 8.9.0. The issue, described as ModularSquareRoot, allows an attacker to cause a denial of service (infinite loop) via crafted DER public-key data linked to squared odd numbers (e.g., the square of 268995137513890432434389773128616504853). P...