VDB
JLSEC-2026-254
JLSEC-2026-254
PUBLISHED
CVSS 4.300000190734863 MEDIUM
Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values...
Risk Scores
CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | Openresty_jll | 0, 0 |
| Julia | OpenSSL_jll | 0, 0 |
Timeline
- Apr 27, 2026 CVE Published
- Apr 27, 2026 CVE Updated
References
- http://www.openwall.com/lists/oss-security/2024/10/16/1 url
- http://www.openwall.com/lists/oss-security/2024/10/23/1 url
- http://www.openwall.com/lists/oss-security/2024/10/24/1 url
- https://github.com/advisories/GHSA-q764-r57m-9wp9 url
- https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 url
- https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 url
- https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 url
- https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 url
- https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a url
- https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 url
- https://lists.debian.org/debian-lts-announce/2024/10/msg00033.html url
- https://lists.debian.org/debian-lts-announce/2024/11/msg00000.html url
- https://nvd.nist.gov/vuln/detail/CVE-2024-9143 url
- https://openssl-library.org/news/secadv/20241016.txt url
- https://security.netapp.com/advisory/ntap-20241101-0001 url
- https://security.netapp.com/advisory/ntap-20241101-0001/ url