starkbank/ecdsa-elixir

Releases3

Frequency9 months 1 week

Last Release over 4 years ago

Stars28

A lightweight and fast pure Elixir ECDSA library https://starkbank.com

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-43568 ↗	Nov 9, 2021Tuesday, 9 November 2021, 22:15	9.8 CRITICAL	7.5 HIGH
The verify function in the Stark Bank Elixir ECDSA library (ecdsa-elixir) 1.0.0 fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.