Security issue in ecc_ecdsa_validate

Status: Alpha

Brought to you by: obgm

This project can now be found here.

#34 Security issue in ecc_ecdsa_validate

Milestone: 1.0

Status: open

Owner: Olaf Bergmann

Labels: None

Updated: 2015-08-08

Created: 2015-08-08

Creator: NMacs

Private: No

There is bug in ecc_ecdsa_validate:
fieldInv hangs is s point is all zeroes.
Actually it's critical security issue. If attacker fabricate TLS message it can effectively DOS the server/client.

Security issue in ecc_ecdsa_validate

Milestone

Searches

Help

#34 Security issue in ecc_ecdsa_validate

Discussion