https://bugzilla.redhat.com/show_bug.cgi?id=1293448
Bug ID: 1293448
Summary: golang: Carry propagation in Int.Exp Montgomery code
in math/big library
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: low
Priority: low
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected],
[email protected], [email protected], [email protected],
[email protected]
Carry propagation in Int.Exp Montgomery function was found in golang's math/big
library, similar to CVE-2015-3193. This issue was introduced in the 1.5 release
and remains present in 1.5.1 and 1.5.2.
Upstream patch:
https://go-review.googlesource.com/#/c/17672/
CVE request:
http://seclists.org/oss-sec/2015/q4/550
--
You are receiving this mail because:
You are on the CC list for the bug.
_______________________________________________
golang mailing list
[email protected]
http://lists.fedoraproject.org/admin/lists/[email protected]
