HistoryEditJSON (OSV)

RUSTSEC-2024-0393

Ambiguous challenge derivation

Reported
Issued
Package
cggmp21 (crates.io)
Type
Vulnerability
Categories
Keywords
#mpc #tss #zkp
References
Patched
  • >=0.4.0

Description

Challenge derivation in non-interactive ZK proofs was ambiguous and that could lead to security vulnerability (however, it's unknown if it could be exploited).

Advisory available under CC0-1.0 license.