A "mathematical flaw" in the implementation of the El Gamal signature algorithm for LibTomCrypt 1.0 to 1.0.2 allows attackers to generate valid signatures without having the private key.
Software | From | Fixed in |
---|---|---|
libtomcrypt / libtomcrypt | 1.0 | 1.0.x |
libtomcrypt / libtomcrypt | 1.0.1 | 1.0.1.x |
libtomcrypt / libtomcrypt | 1.0.2 | 1.0.2.x |