PyCrypto prior to 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for malicious users to conduct brute force attacks to obtain the private key.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dlitz pycrypto 2.4 |
||
dlitz pycrypto 2.3 |
||
dlitz pycrypto 1.9 |
||
dlitz pycrypto 1.0.1 |
||
dlitz pycrypto 1.0.0 |
||
dlitz pycrypto |
||
dlitz pycrypto 2.4.1 |
||
dlitz pycrypto 2.0.1 |
||
dlitz pycrypto 2.0 |
||
dlitz pycrypto 1.1 |
||
dlitz pycrypto 1.0.2 |
||
dlitz pycrypto 2.1.0 |
||
dlitz pycrypto 2.2 |