Red Hat Bugzilla – Bug 1304379
CVE-2015-8804 nettle: miscalculations on secp384 curve
Last modified: 2016-11-04 04:30:00 EDT
A mistake in the computation of elliptic curve scalar multiplications was found in nettle.
As stated in the above-mentioned article, this issue only affects 64 bit x86 systems.
Reporter's blog post:
Fixed upstream in nettle 3.2:
Created attachment 1122347 [details]
Local copy of the test case that was posted to the upstream list:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2016:2582 https://rhn.redhat.com/errata/RHSA-2016-2582.html