[3.4] nettle: Miscomputations of elliptic curve scalar multiplications (CVE-2015-8803, CVE-2015-8804, CVE-2015-8805)| ID: oval:org.secpod.oval:def:1800045 | Date: (C)2018-03-28 (M)2022-09-23 |
| Class: PATCH | Family: unix |
CVE-2015-8803, CVE-2015-8805: secp256 calculation bug Patch: CVE-2015-8804: miscalculations on secp384 curve Patch: They affect the NIST P-256 and P-384 curves. The P-256 bug is in the C code and affects multiple architectures. The P-384 bug is in the assembly code and only affects 64 bit x86. Fixed In Version: Nettle 3.2 fixes all three bugs.
| Platform: |
| Alpine Linux 3.4 |
