CVE-2023-36326

Name of the Vulnerable Software and Affected Versions RELIC versions before commit 34580d840469361ba9b5f001361cad659687b9ab

Description The issue allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling the realloc function in the bn grow function.

Recommendations For versions before commit 34580d840469361ba9b5f001361cad659687b9ab, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the use of the bn grow function until a patch is available. Avoid using the realloc function in the bn grow function until the issue is resolved.