CVE-2016-1000340

Published: Jun 4, 2018Modified: May 12, 2025

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed (org.bouncycastle.math.raw.Nat???). These classes are used by our custom elliptic curve implementations (org.bouncycastle.math.ec.custom.**), so there was the possibility of rare (in general usage) spurious calculations for elliptic curve scalar multiplications. Such errors would have been detected with high probability by the output validation for our scalar multipliers.

Affected (1)

Products: Bouncycastle: Bc Java

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Bouncycastle Bc Java	From 1.51 to 1.55

Related CWEs

References (10)

https://access.redhat.com/errata/RHSA-2018:2669

Source: cve@mitre.org

https://access.redhat.com/errata/RHSA-2018:2927

Source: cve@mitre.org

https://github.com/bcgit/bc-java/commit/790642084c4e0cadd47352054f868cc8397e2c00#diff-e5934feac8203ca0104ab291a3560a31

Source: cve@mitre.org

PatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20181127-0004/

Source: cve@mitre.org

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: cve@mitre.org

https://access.redhat.com/errata/RHSA-2018:2669

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2018:2927

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/bcgit/bc-java/commit/790642084c4e0cadd47352054f868cc8397e2c00#diff-e5934feac8203ca0104ab291a3560a31

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20181127-0004/

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.