diff options
-rw-r--r-- | crypto-defects.md | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/crypto-defects.md b/crypto-defects.md index 710c53bc0..8dd010915 100644 --- a/crypto-defects.md +++ b/crypto-defects.md @@ -4,6 +4,7 @@ appearing in our code. | Reference | Specification | Implementation | Defect | | ------------------------------------------------------------------- | --------------------------- | --------------------------- | ------------- | -| [openssl#3607](https://rt.openssl.org/Ticket/Display.html?id=3607) | P256 field element squaring | 64-bit Montgomery form, asm | limb overflow | +| [openssl#3607](https://rt.openssl.org/Ticket/Display.html?id=3607) | P256 field element squaring | 64-bit Montgomery form, AMD64 | limb overflow | | [go#13515](https://github.com/golang/go/issues/13515) | Modular exponentiation | uintptr-sized Montgomery form, Go | carry handling | -| [NaCl ed25519 (p. 2)](https://tweetnacl.cr.yp.to/tweetnacl-20131229.pdf) | F25519 mul, square | 64-bit pseudo-Mersenne, qhasm | carry handling | +| [NaCl ed25519 (p. 2)](https://tweetnacl.cr.yp.to/tweetnacl-20131229.pdf) | F25519 mul, square | 64-bit pseudo-Mersenne, AMD64 | carry handling | +| [openssl#0c687d7e](https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=dc3c5067cd90f3f2159e5d53c57b92730c687d7e;ds=sidebyside) | Poly1305 | 32-bit pseudo-Mersenne, x86 and ARM | bad truncation | |