FudanMPL/Vulnerabilities-in-MPC-Framework

Releases0

Stars4

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-31803 ↗	May 14, 2024Tuesday, 14 May 2024, 15:25	6.2 MEDIUM	—
Buffer Overflow vulnerability in emp-ot v.0.2.4 allows a remote attacker to execute arbitrary code via the FerretCOT<T>::read_pre_data128_from_file function.
CVE-2024-33780 ↗	May 7, 2024Tuesday, 7 May 2024, 14:15	6.5 MEDIUM	—
MP-SPDZ v0.3.8 was discovered to contain a segmentation violation via the function osuCrypto::copyOut at /Tools/SilentPprf.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message.
CVE-2024-33781 ↗	May 7, 2024Tuesday, 7 May 2024, 14:15	7.5 HIGH	—
MP-SPDZ v0.3.8 was discovered to contain a stack overflow via the function octetStream::get_bytes in /Tools/octetStream.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message.
CVE-2024-33782 ↗	May 7, 2024Tuesday, 7 May 2024, 14:15	7.5 HIGH	—
MP-SPDZ v0.3.8 was discovered to contain a stack overflow via the function OTExtensionWithMatrix::extend in /OT/OTExtensionWithMatrix.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message.
CVE-2024-33783 ↗	May 7, 2024Tuesday, 7 May 2024, 14:15	6.5 MEDIUM	—
MP-SPDZ v0.3.8 was discovered to contain a segmentation violation via the function osuCrypto::SilentMultiPprfReceiver::expand in /Tools/SilentPprf.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message.