Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-67154

GnuTLS error checking for hybrid PQC is incomplete/incorrect

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • rhel-10.0
    • gnutls
    • None
    • No
    • Low
    • rhel-sst-security-crypto
    • ssg_security
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None

      When using gnutls-3.8.8-1.el10.x86_64, the tlsfuzzer test-tls13-mlkem.py script fails for the following test cases:

      • secp256r1mlkem768: invalid ECDH point format: compressed
      • secp256r1mlkem768: invalid ECDH point format: hybrid
      • secp256r1mlkem768: invalid ECDH point format: raw
      • secp256r1mlkem768: malformed pqc part, variable 0
      • secp256r1mlkem768: malformed pqc part, variable 1
      • secp256r1mlkem768: malformed pqc part, variable 2
      • secp256r1mlkem768: malformed pqc part, variable 3
      • x25519mlkem768: malformed pqc part, variable 0
      • x25519mlkem768: malformed pqc part, variable 1
      • x25519mlkem768: malformed pqc part, variable 2
      • x25519mlkem768: malformed pqc part, variable 3

              dueno@redhat.com Daiki Ueno
              hkario@redhat.com Alicja Kario
              Daiki Ueno Daiki Ueno
              Alexander Sosedkin Alexander Sosedkin
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: