GO-2023-1733

See a problem?
Please try reporting it to the source first.
Source
https://pkg.go.dev/vuln/GO-2023-1733
Import Source
https://vuln.go.dev/ID/GO-2023-1733.json
JSON Data
https://api.test.osv.dev/v1/vulns/GO-2023-1733
Aliases
Published
2023-07-11T18:44:28Z
Modified
2025-02-05T20:26:58.276087Z
Summary
Timing attack from non-constant time scalar arithmetic in github.com/bnb-chain/tss-lib
Details

Timing attack from non-constant time scalar arithmetic in github.com/bnb-chain/tss-lib.

Database specific 
{
    "url": "https://pkg.go.dev/vuln/GO-2023-1733",
    "review_status": "REVIEWED"
}
References

Affected packages

Go / github.com/bnb-chain/tss-lib

Package

Name
github.com/bnb-chain/tss-lib
View open source insights on deps.dev
Purl
pkg:golang/github.com/bnb-chain/tss-lib

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.6-0.20230324145555-bb6fb30bd3eb

Ecosystem specific 

{
    "imports": [
        {
            "path": "github.com/bnb-chain/tss-lib/common"
        }
    ]
}

Go / github.com/binance-chain/tss-lib

Package

Name
github.com/binance-chain/tss-lib
View open source insights on deps.dev
Purl
pkg:golang/github.com/binance-chain/tss-lib

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected

Ecosystem specific 

{
    "imports": [
        {
            "path": "github.com/binance-chain/tss-lib/common"
        }
    ]
}