CVE-2021-4160
- EPSS 0.3%
- Published 28.01.2022 22:15:15
- Last modified 21.11.2024 06:37:02
There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlik...
CVE-2021-3711
- EPSS 2.75%
- Published 24.08.2021 15:15:09
- Last modified 21.11.2024 06:22:12
In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen...
CVE-2021-3712
- EPSS 0.82%
- Published 24.08.2021 15:15:09
- Last modified 21.11.2024 06:22:13
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the s...