PuTTY vulnerability vuln-p521-bias
(www.chiark.greenend.org.uk)
from tedu@inks.tedunangst.com to inks@inks.tedunangst.com on 15 Apr 20:42
https://inks.tedunangst.com/l/5104
from tedu@inks.tedunangst.com to inks@inks.tedunangst.com on 15 Apr 20:42
https://inks.tedunangst.com/l/5104
In all of those cases except P521, the bias introduced by reducing a 512-bit number mod q is negligible. But in the case of P521, where q has 521 bits (i.e. more than 512), reducing a 512-bit number mod q has no effect at all – you get a value of k whose top 9 bits are always zero.
CVE-2024-31497
https://marc.info/?l=oss-security&m=171321011524021&w=2
#crypto #hash #networking #security
#crypto #hash #inks #networking #security
threaded - newest