Crypto wallets implementing the Lindell17 TSS protocol...
High severity
Unreviewed
Published
Aug 10, 2023
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
Aug 9, 2023
Published to the GitHub Advisory Database
Aug 10, 2023
Last updated
Apr 4, 2024
Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.
References