« List of all CVEs

CVE-2021-3580

Published: 8/5/2021 Last updated: 11/19/2024 Reserved: 6/4/2021

A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (3)

conf-gnutls conf-mingw-w64-nettle-i686 conf-mingw-w64-nettle-x86_64

Products affected (1)

Product Vendor Version
nettle n/a < V3.0.3

References (16)