CVE-2023-24532
high
CVSS v3
—
CVSS v2
—
VIR risk
8.0
Description
The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-24532
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-24532.html
Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:3318
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| rhel | 9 | fixed | |
| sles | affected | | |
| debian | bullseye | affected | |
| debian | bookworm | fixed | 1.19.8-2 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Go | stdlib | >=1.20.0-0,<1.20.2 | 1.19.7 |
References
Verify integrity in audit chain (admin only). AS-IS.