Vulnerability Report: GO-2021-0319

CVE-2022-23806
Affects: crypto/elliptic
Published: May 23, 2022
Modified: Jun 12, 2023

Some big.Int values that are not valid field elements (negative or overflowing) might cause Curve.IsOnCurve to incorrectly return true. Operating on those values may cause a panic or an invalid curve operation. Note that Unmarshal will never return such values.

Affected Packages

Path

Versions

Symbols
crypto/elliptic

before go1.16.14, from go1.17.0-0 before go1.17.7
- CurveParams.IsOnCurve

Aliases

CVE-2022-23806

References

https://go.dev/cl/382455
https://go.googlesource.com/go/+/7f9494c277a471f6f47f4af3036285c0b1419816
https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ
https://go.dev/issue/50974
https://vuln.go.dev/ID/GO-2021-0319.json

Credits

Guido Vranken

Feedback

See anything missing or incorrect? Suggest an edit to this report.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL