4 matches found
CVE-2024-33782
CVE-2024-33782 affects MP-SPDZ v0.3.8. The vulnerability is a stack overflow in OTExtensionWithMatrix::extend (location: /OT/OTExtensionWithMatrix.cpp) that can cause a Denial of Service via a crafted message. Public sources in the connected data confirm the vulnerable component and impact. There...
CVE-2024-33781
MP-SPDZ v0.3.8 is affected by a stack overflow in octetStream::get_bytes (Tools/octetStream.cpp), enabling DoS via a crafted message. No exploit details are provided in the documents. Some sources suggest temporary workarounds: disable the octetStream::get_bytes function and restrict access to /T...
CVE-2024-33783
MP-SPDZ v0.3.8 contains a segmentation violation in osuCrypto::SilentMultiPprfReceiver::expand (SilentPprf.cpp), enabling a Denial of Service via a crafted message. Impact: DoS. Affected component: SilentMultiPprfReceiver::expand in MP-SPDZ 0.3.8. Mitigation/workaround: PT-2024-25478 recommends d...
CVE-2024-33780
MP-SPDZ 0.3.8 is affected by a segmentation violation in osuCrypto::copyOut (SilentPprf.cpp), allowing an attacker to cause a Denial of Service via a crafted message. Affected component is /Tools/SilentPprf.cpp; CVSS indicates network access with low attack complexity and user interaction require...