CVE-2019-6486

Name of the Vulnerable Software and Affected Versions Go versions prior to 1.10.8 Go versions 1.11.x prior to 1.11.5

Description The issue exists due to insufficient input validation in the crypto module of the Go programming language. This can be exploited by a remote attacker to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks. The vulnerability is related to the mishandling of P-521 and P-384 elliptic curves. Attackers can craft inputs that consume excessive amounts of CPU, which might be delivered via TLS handshakes, X.509 certificates, JWT tokens, ECDH shares, or ECDSA signatures.

Recommendations For Go versions prior to 1.10.8, update to version 1.10.8 or later to resolve the issue. For Go versions 1.11.x prior to 1.11.5, update to version 1.11.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the crypto/elliptic module, specifically the P-521 and P-384 elliptic curves, until a patch is available. Avoid reusing ECDH private keys to minimize the risk of key recovery attacks.