Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS1mcHI1LWpwMmotNHEyZs4ABBP8

paillier-zk has ambiguous challenge derivation

Challenge derivation in non-interactive ZK proofs was ambiguous and that could lead to security vulnerability (however, it's unknown if it could be exploited).

Permalink: https://github.com/advisories/GHSA-fpr5-jp2j-4q2f
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1mcHI1LWpwMmotNHEyZs4ABBP8
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Low
Classification: General
Published: 8 days ago
Updated: 8 days ago

Identifiers: GHSA-fpr5-jp2j-4q2f
References:

• https://github.com/dfns/paillier-zk/pull/49
• https://rustsec.org/advisories/RUSTSEC-2024-0391.html
• https://github.com/advisories/GHSA-fpr5-jp2j-4q2f

Repository: https://github.com/dfns/paillier-zk
Blast Radius: 0.0

Affected Packages