Crypto/Internal/Nistec
Approved changes feed: RSS · Atom
cpe:2.3:a:go_standard_library:crypto/internal/nistec:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Go Standard Library (50bc78d3-15d0-59a4-bc22-a964570e0614) |
|---|---|
| Product | Crypto/Internal/Nistec (6e0651fd-0879-5e85-b138-93332ab8cf01) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-22866 |
vulnerable | 2026-06-03 14:59:41.668055 |
Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec
Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.
Published: 2025-02-06T16:54:10.252Z
Updated: 2025-02-21T18:03:36.215Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-24532 |
vulnerable | 2026-06-03 14:49:30.079966 |
Incorrect calculation on P256 curves in crypto/internal/nistec
The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.
Published: 2023-03-08T19:40:45.425Z
Updated: 2024-08-02T10:56:04.340Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.