Fluid Attacks Database

Description

Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 13	golang-1.24	>=0 <1.24~rc3-1	1.24~rc3-1
go	stdlib	>=0 <1.22.12	1.22.12
debian 11	golang-1.15	=1.15.15-1 \|\| =1.15.15-1~deb11u1 \|\| =1.15.15-1~deb11u2 \|\| =1.15.15-1~deb11u3 \|\| =1.15.15-1~deb11u4 \|\| =1.15.15-2 \|\| =1.15.15-3 \|\| =1.15.15-4 \|\| =1.15.15-5 \|\| =1.15.9-6	-
debian 12	golang-1.19	=1.19.10-1 \|\| =1.19.10-2 \|\| =1.19.11-1 \|\| =1.19.12-1 \|\| =1.19.12-2 \|\| =1.19.12-2~bpo11+1 \|\| =1.19.12-2~bpo12+1 \|\| =1.19.13-1 \|\| =1.19.13-1~bpo11+1 \|\| =1.19.13-1~bpo12+1 \|\| =1.19.8-2 \|\| =1.19.9-1	-
rpm rhel8	golang	-	-
rpm rhel10	toolbox	-	-
rpm rhel10	delve	<0:1.24.1-1.el10_0	0:1.24.1-1.el10_0
rpm rhel9	toolbox	-	-
rpm rhel9	golang	<0:1.23.6-2.el9_5	0:1.23.6-2.el9_5
rpm rhel8	grafana-pcp	-	-

1-10 of 47

Aliases

1. CVE-2025-228662. NVD-2025-228663. OSV-DEBIAN-2025-228664. OSV-2025-228665. OSV-GO-2025-34476. GCVE-2025-228667. SECURITY-TRACKER-CVE-2025-22866

References

1. https://go.dev/cl/6437352. https://go.dev/issue/713833. https://groups.google.com/g/golang-announce/c/xU1ZCHUZw3k

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.