libcrux incorrectly calculates on aarch64
High severity
GitHub Reviewed
Published
Dec 4, 2025
to the GitHub Advisory Database
•
Updated Dec 4, 2025
Description
Published to the GitHub Advisory Database
Dec 4, 2025
Reviewed
Dec 4, 2025
Last updated
Dec 4, 2025
On platforms without the
core::arch::aarch64::vxarq_u64intrinsic, an unverified fallback inlibcrux-intrinsicsv0.0.3passed incorrect arguments and produced wrong results. This corrupted SHA-3 digests and caused
libcrux-ml-kemandlibcrux-ml-dsato sample incorrectly, yielding incorrect shared secrets and invalid signatures.The issue has been fixed in v0.0.4.
References