RUSTSEC-2021-0076: libsecp256k1 allows overflowing signatures


> libsecp256k1 allows overflowing signatures

| Details             |                                                |
| ------------------- | ---------------------------------------------- |
| Package             | `libsecp256k1`                      |
| Version             | `0.3.5`                   |
| URL                 | [https://github.com/paritytech/libsecp256k1/pull/67](https://github.com/paritytech/libsecp256k1/pull/67) |
| Date                | 2021-07-13                         |
| Patched versions    | `>=0.5.0`                  |

libsecp256k1 accepts signatures whose R or S parameter is larger than the
secp256k1 curve order, which differs from other implementations. This could
lead to invalid signatures being verified.

The error is resolved in 0.5.0 by adding a `check_overflow` flag.

See [advisory page](https://rustsec.org/advisories/RUSTSEC-2021-0076.html) for additional details.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

RUSTSEC-2021-0076: libsecp256k1 allows overflowing signatures #71

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Details
Package	`libsecp256k1`
Version	`0.3.5`
URL	paritytech/libsecp256k1#67
Date	2021-07-13
Patched versions	`>=0.5.0`

RUSTSEC-2021-0076: libsecp256k1 allows overflowing signatures #71

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions