Moderate severityNVD Advisory· Published Jan 22, 2020· Updated Aug 5, 2024
CVE-2019-20399
CVE-2019-20399
Description
A timing vulnerability in the Scalar::check_overflow function in Parity libsecp256k1-rs before 0.3.1 potentially allows an attacker to leak information via a side-channel attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
libsecp256k1-rscrates.io | < 0.3.1 | 0.3.1 |
Affected products
2- Parity/libsecp256k1-rsdescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-7cqg-8449-rmfvghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-20399ghsaADVISORY
- github.com/paritytech/libsecp256k1/commit/11ba23a9766a5079918cd9f515bc100bc8164b50ghsax_refsource_MISCWEB
- rustsec.org/advisories/RUSTSEC-2020-0156.htmlghsaWEB
News mentions
0No linked articles in our index yet.