PT-2021-22003 · Unknown · Libsecp256K1

Published

2021-07-13

Updated

2021-08-25

CVE-2021-38195

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: libsecp256k1 versions prior to 0.5.0

Description: An issue in the libsecp256k1 crate allows it to verify invalid signatures. This occurs because the crate permits the R or S parameter to be larger than the secp256k1 curve order, resulting in an overflow. The issue differs from other implementations, which do not accept such signatures.

Recommendations: For versions prior to 0.5.0, update to version 0.5.0 or later, which includes a check overflow flag to resolve the issue.

Exploit

Fix

Integer Overflow

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-347

Related Identifiers

CVE-2021-38195

GHSA-G4VJ-X7V9-H82M

RUSTSEC-2021-0076

Affected Products

Libsecp256K1

PT-2021-22003 · Unknown · Libsecp256K1

CVE-2021-38195

Weakness Enumeration

Related Identifiers

Affected Products

References · 9