Fluid Attacks Database

Description

Incorrect computation for some invalid field elements in crypto/elliptic Some big.Int values that are not valid field elements (negative or overflowing) might cause Curve.IsOnCurve to incorrectly return true. Operating on those values may cause a panic or an invalid curve operation. Note that Unmarshal will never return such values.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
go	stdlib	>=0 <1.16.14	1.16.14
debian 11	golang-1.15	=1.15.15-1~deb11u1 \|\| =1.15.15-1~deb11u2 \|\| =1.15.9-6 \|\| >=0 <1.15.15-1~deb11u3	1.15.15-1~deb11u3
rpm rhel8	go-toolset	<0:1.17.7-1.module+el8.6.0+14297+32a15e19	0:1.17.7-1.module+el8.6.0+14297+32a15e19
rpm rhel7	golang	-	-
rpm rhel8	golang	-	-

Aliases

1. CVE-2022-238062. NVD-2022-238063. OSV-GO-2021-03194. OSV-2022-238065. OSV-DEBIAN-2022-238066. GCVE-2022-238067. SECURITY-TRACKER-CVE-2022-23806

References

1. https://go.dev/cl/3824552. https://go.googlesource.com/go/+/7f9494c277a471f6f47f4af3036285c0b14198163. https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ4. https://go.dev/issue/50974

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.