new bug found by wycheproof (#65)

C2SP · Dec 14, 2019 · d0a0cfe · d0a0cfe
1 parent e91db8a
commit d0a0cfe
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/doc/bugs.md b/doc/bugs.md
@@ -62,4 +62,8 @@ See [list of issues](issues.md) for details.
 | CBC-HMAC is vulnerable to padding oracle attack  | Quan Nguyen                |  N/A              |   https://goo.gl/ACZQeI  | To be released
 | CBC-HMAC integer overflow, HMAC bypass  | Quan Nguyen                |  N/A              |   https://goo.gl/ACZQeI  | To be released
 
-
+## Package OpenSSL
+|           Summary                |            Credits         |         CVE       |       Upstream Acknowledgement          | Tests                                  |
+|:---------------------------:     |:--------------------------:|:-----------------:|:--------------------------------------: |:---------------------------------------:
+| X25519 incorrect carry handling | Alex Gaynor and Paul Kehrer | N/A | https://github.com/openssl/openssl/issues/6687 |
+| Ed25519 malleable signatures    | Paul Kehrer and Alex Gaynor | N/A | https://github.com/openssl/openssl/issues/7693 |