Go modules package
github.com/consensys/gnark-crypto
pkg:golang/github.com/consensys/gnark-crypto
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-44273 | — | < 0.12.0 | 0.12.0 | Sep 28, 2023 | Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval. |
- CVE-2023-44273Sep 28, 2023affected < 0.12.0fixed 0.12.0
Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval.