libcrux-ml-dsa: Signature Verification on AVX2 Platforms Mishandles Edge Case — GHSA-FHVH-VW7H-9XF3

Summary

The AVX2 implementation of ML-DSA verification incorrectly implemented the `use_hint` function, mishandling an edge case that should lead to signature rejection. ## Impact An attacker could make the ML-DSA verifier accept a crafted invalid signature under a maliciously generated verification key, if the AVX2 implementation is used. ## Mitigation From version `0.0.9` the edge case is handled correctly and invalid…

Product

rust: libcrux-ml-dsa

What to do

General, cautious steps (verify details in the official source):

• Prioritize patching or mitigation immediately (treat as actively risky).
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

• Read the official source

Related advisories