github.com/cloudflare/circl is vulnerable to Insecure Randomness. Kyber
and FrodoKEM
did not check whether crypto/rand.Read()
returned an error, leading to a predictable shared secret. The tkn20
and blindrsa
components did not check if enough randomness was returned from the user provided randomness source. In rare deployment cases, this could lead to a predictable shared secret.