x/vulndb: potential Go vuln in github.com/taurusgroup/multi-party-sig: GHSA-7f6p-phw2-8253

Advisory GHSA-7f6p-phw2-8253 references a vulnerability in the following Go modules:

Module
github.com/taurusgroup/multi-party-sig

Description: Coinbase researchers reported 2 security issues in our implementation of the oblivious transfer (OT) based protocol DKLS:

1. Secret share recovery attack

If the base OT setup of the protocol is reused for another execution of the OT extension, then a malicious participant can extract a bit of the secret of another participant. By repeating the execution they can eventually recover the whole secret.

Therefore, unlike our comments suggested, you must not reuse an OT setup for multiple protocol executions.

We're adding a warning in the code:

h...

References:

No existing reports found with this module or alias. See doc/quickstart.md for instructions on how to triage this report.

id: GO-ID-PENDING
modules:
    - module: github.com/taurusgroup/multi-party-sig
      vulnerable_at: 0.6.0-alpha-2021-09-21
summary: Taurus multi-party-sig has OT-based ECDSA protocol implementation flaws in github.com/taurusgroup/multi-party-sig
ghsas:
    - GHSA-7f6p-phw2-8253
references:
    - advisory: https://github.com/advisories/GHSA-7f6p-phw2-8253
    - advisory: https://github.com/taurushq-io/multi-party-sig/security/advisories/GHSA-7f6p-phw2-8253
    - web: https://eprint.iacr.org/2018/499.pdf
    - web: https://github.com/taurushq-io/multi-party-sig/blob/4d84aafb57b437da1b933db9a265fb7ce4e7c138/internal/ot/extended.go#L188
    - web: https://github.com/taurushq-io/multi-party-sig/blob/9e4400fccee89be6195d0a12dd0ed052288d5040/internal/ot/extended.go#L114
    - web: https://github.com/taurushq-io/multi-party-sig/tree/otfix
source:
    id: GHSA-7f6p-phw2-8253
    created: 2024-11-25T16:01:21.176270834Z
review_status: UNREVIEWED

golang / vulndb

x/vulndb: potential Go vuln in github.com/taurusgroup/multi-party-sig: GHSA-7f6p-phw2-8253 #3288

1. Secret share recovery attack