説明
IO FinNet tss-lib before 2.0.0 allows a collision of hash values.
AI分析AIによる分析
影響を受ける製品
iofinnettss-lib
参照
- https://github.com/IoFinnet/tss-lib/commit/369ec50be1437588a9733443bcb2f15b794601d4PatchThird Party Advisory
- https://github.com/IoFinnet/tss-lib/releases/tag/v2.0.0Release NotesThird Party Advisory
- https://medium.com/%40iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b
- https://github.com/IoFinnet/tss-lib/commit/369ec50be1437588a9733443bcb2f15b794601d4PatchThird Party Advisory
- https://github.com/IoFinnet/tss-lib/releases/tag/v2.0.0Release NotesThird Party Advisory
- https://medium.com/%40iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b