PuTTY vulnerability vuln-p521-bias (www.chiark.greenend.org.uk)
from tedu@inks.tedunangst.com to inks@inks.tedunangst.com on 15 Apr 2024 20:42
https://inks.tedunangst.com/l/5104

In all of those cases except P521, the bias introduced by reducing a 512-bit number mod q is negligible. But in the case of P521, where q has 521 bits (i.e. more than 512), reducing a 512-bit number mod q has no effect at all – you get a value of k whose top 9 bits are always zero.

CVE-2024-31497

https://marc.info/?l=oss-security&m=171321011524021&w=2

#crypto #hash #networking #security

#crypto #hash #inks #networking #security

threaded - newest