CVE-2022-23806

Published: 2022-02-11T01:15Z

Last Modified: 2024-11-21T06:49Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt