The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-01-27T20:00:00

Updated: 2024-08-06T08:20:43.463Z

Reserved: 2015-12-22T00:00:00

Link: CVE-2015-8618

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-01-27T20:59:00.107

Modified: 2024-11-21T02:38:49.653

Link: CVE-2015-8618

cve-icon Redhat

Severity : Low

Publid Date: 2015-12-21T00:00:00Z

Links: CVE-2015-8618 - Bugzilla