{"id":"GO-2022-0435","summary":"Panic due to large inputs affecting P-256 curves in crypto/elliptic","details":"A crafted scalar input longer than 32 bytes can cause P256().ScalarMult or P256().ScalarBaseMult to panic. Indirect uses through crypto/ecdsa and crypto/tls are unaffected. amd64, arm64, ppc64le, and s390x are unaffected.","aliases":["BIT-golang-2022-28327","CVE-2022-28327"],"modified":"2026-03-17T04:19:07.329208Z","published":"2022-05-20T21:17:46Z","database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2022-0435"},"references":[{"type":"FIX","url":"https://go.dev/cl/397135"},{"type":"FIX","url":"https://go.googlesource.com/go/+/37065847d87df92b5eb246c88ba2085efcf0b331"},{"type":"REPORT","url":"https://go.dev/issue/52075"},{"type":"WEB","url":"https://groups.google.com/g/golang-announce/c/oecdBNLOml8"}],"affected":[{"package":{"name":"stdlib","ecosystem":"Go","purl":"pkg:golang/stdlib"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.17.9"},{"introduced":"1.18.0-0"},{"fixed":"1.18.1"}]}],"ecosystem_specific":{"imports":[{"path":"crypto/elliptic","symbols":["CurveParams.ScalarBaseMult","CurveParams.ScalarMult","p256Curve.CombinedMult","p256Curve.ScalarBaseMult","p256Curve.ScalarMult","p256GetScalar"]}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2022-0435.json"}}],"schema_version":"1.7.5","credits":[{"name":"Project Wycheproof"}]}