data/reports/GO-2023-1621.yaml - vulndb - Git at Google

 modules:
   - module: std
     versions:
       - fixed: 1.19.7
       - introduced: 1.20.0
         fixed: 1.20.2
     vulnerable_at: 1.20.1
     packages:
       - package: crypto/internal/nistec
         symbols:
           - P256Point.ScalarBaseMult
           - P256Point.ScalarMult
           - P256OrdInverse
 description: |
     The ScalarMult and ScalarBaseMult methods of the P256 Curve may
     return an incorrect result if called with some specific unreduced
     scalars (a scalar larger than the order of the curve).

     This does not impact usages of crypto/ecdsa or crypto/ecdh.
 credit: Guido Vranken, via the Ethereum Foundation bug bounty program
 references:
   - report: https://go.dev/issue/58647
   - fix: https://go.dev/cl/471255
   - web: https://groups.google.com/g/golang-announce/c/3-TpUx48iQY
 cve_metadata:
     id: CVE-2023-24532
     cwe: 'CWE-682: Incorrect Calculation'
	modules:
	- module: std
	versions:
	- fixed: 1.19.7
	- introduced: 1.20.0
	fixed: 1.20.2
	vulnerable_at: 1.20.1
	packages:
	- package: crypto/internal/nistec
	symbols:
	- P256Point.ScalarBaseMult
	- P256Point.ScalarMult
	- P256OrdInverse
	description: \|
	The ScalarMult and ScalarBaseMult methods of the P256 Curve may
	return an incorrect result if called with some specific unreduced
	scalars (a scalar larger than the order of the curve).

	This does not impact usages of crypto/ecdsa or crypto/ecdh.
	credit: Guido Vranken, via the Ethereum Foundation bug bounty program
	references:
	- report: https://go.dev/issue/58647
	- fix: https://go.dev/cl/471255
	- web: https://groups.google.com/g/golang-announce/c/3-TpUx48iQY
	cve_metadata:
	id: CVE-2023-24532
	cwe: 'CWE-682: Incorrect Calculation'