CVE-2019-25003

HIGH7.5EPSS 0.21%

Flaw in Scalar::check_overflow allows side-channel timing attack

Published: 8/25/2021Modified: 11/8/2023

Also known as:GHSA-hrjm-c879-pp86RUSTSEC-2019-0027

Description

Versions of `libsecp256k1` prior to `0.3.1` did not execute Scalar::check_overflow in constant time. This allows an attacker to potentially leak information via a timing attack. The flaw was corrected by modifying Scalar::check_overflow to execute in constant time.

Affected packages (2)

crates.io/libsecp256k1from 0, < 0.3.1
crates.io/libsecp256k1>= 0.0.0-0, < 0.3.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References (5)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2019-25003
PATCHhttps://crates.io/crates/libsecp256k1
PATCHhttps://github.com/paritytech/libsecp256k1
WEBhttps://github.com/paritytech/libsecp256k1/commit/11ba23a9766a5079918cd9f515bc100bc8164b50
WEBhttps://rustsec.org/advisories/RUSTSEC-2019-0027.html