CVE-2024-33780

Name of the Vulnerable Software and Affected Versions MP-SPDZ version 0.3.8

Description The issue is related to a segmentation violation via the function osuCrypto::copyOut at /Tools/SilentPprf.cpp. This allows attackers to cause a Denial of Service (DoS) via a crafted message.

Recommendations For MP-SPDZ version 0.3.8, consider disabling the osuCrypto::copyOut function as a temporary workaround until a patch is available. Restrict access to the /Tools/SilentPprf.cpp module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.