Approved changes feed: RSS · Atom
cpe:2.3:a:cloudflare:circl:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Cloudflare (5b4480cb-8cd0-5fc8-8b44-6534513ed911) |
|---|---|
| Product | Circl (0cfcd810-ca32-5c92-aea2-4279a7d4b25c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/cloudflare/circl |
purl2cpe | 2026-06-01 10:13:09.962267 |
pkg:golang/github.com/cloudflare/circl |
purl2cpe | 2026-06-01 10:13:09.962269 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-1229 |
vulnerable | 2026-06-03 15:14:43.967590 |
Incorrect calculation in CIRCL secp384r1 CombinedMult
The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas.
ECDH and ECDSA signing relying on this curve are not affected.
The bug was fixed in v1.6.3 https://github.com/cloudflare/circl/releases/tag/v1.6.3 .
Published: 2026-02-24T07:58:54.406Z
Updated: 2026-02-24T15:10:21.738Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1732 |
vulnerable | 2026-06-03 14:48:56.356886 |
Improper random reading in CIRCL
MEDIUM (5.3)
When sampling randomness for a shared secret, the implementation of Kyber and FrodoKEM, did not check whether crypto/rand.Read() returns an error. In rare deployment cases (error thrown by the Read() function), this could lead to a predictable shared secret.
The tkn20 and blindrsa components did not check whether enough randomness was returned from the user provided randomness source. Typically the user provides crypto/rand.Reader, which in the vast majority of cases will always return the right number random bytes. In the cases where it does not, or the user provides a source that does not, the blinding for blindrsa is weak and integrity of the plaintext is not ensured in tkn20.
Published: 2023-05-10T11:41:53.902Z
Updated: 2025-01-27T18:32:25.797Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.