Headline
GHSA-2x5j-vhc8-9cwm: CIRCL-Fourq: Missing and wrong validation can lead to incorrect results
Impact
The CIRCL implementation of FourQ fails to validate user-supplied low-order points during Diffie-Hellman key exchange, potentially allowing attackers to force the identity point and compromise session security.
Moreover, there is an incorrect point validation in ScalarMult can lead to incorrect results in the isEqual function and if a point is on the curve.
Patches
Version 1.6.1 (https://github.com/cloudflare/circl/tree/v1.6.1) mitigates the identified issues.
We acknowledge Alon Livne (Botanica Software Labs) for the reported findings.
- GitHub Advisory Database
- GitHub Reviewed
- GHSA-2x5j-vhc8-9cwm
CIRCL-Fourq: Missing and wrong validation can lead to incorrect results
Low severity GitHub Reviewed Published Jun 10, 2025 in cloudflare/circl • Updated Jun 10, 2025
Package
gomod github.com/cloudflare/circl (Go)
Affected versions
< 1.6.1
Impact
The CIRCL implementation of FourQ fails to validate user-supplied low-order points during Diffie-Hellman key exchange, potentially allowing attackers to force the identity point and compromise session security.
Moreover, there is an incorrect point validation in ScalarMult can lead to incorrect results in the isEqual function and if a point is on the curve.
Patches
Version 1.6.1 (https://github.com/cloudflare/circl/tree/v1.6.1) mitigates the identified issues.
We acknowledge Alon Livne (Botanica Software Labs) for the reported findings.
References
- GHSA-2x5j-vhc8-9cwm
- https://github.com/cloudflare/circl/tree/v1.6.1
Published to the GitHub Advisory Database
Jun 10, 2025
Last updated
Jun 10, 2025