Critical vulnerability in crypto_check*()

LoupVaillant / Monocypher

An easy to use, easy to deploy crypto library

https://monocypher.org

Other

614 stars 81 forks source link

Closed LoupVaillant closed 6 years ago

LoupVaillant commented 6 years ago

Signature verification accepts all-zero signatures as valid, even with a genuine public key.

LoupVaillant commented 6 years ago

Fixed in version 2.0.4 and 1.1.1