Carry Propagation Vulnerability in Go 1.5.x

Carry Propagation Vulnerability in Go 1.5.x

CVE-2015-8618 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.