Exposure of Sensitive Information to an Unauthorized Actor Affecting github.com/consensys/gnark/backend/groth16/bn254 package, versions <0.11.0
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-GOLANG-GITHUBCOMCONSENSYSGNARKBACKENDGROTH16BN254-7922516
- published 6 Sep 2024
- disclosed 6 Sep 2024
- credit maltezellic
Introduced: 6 Sep 2024
CVE-2024-45039 Open this link in a new tabHow to fix?
Upgrade github.com/consensys/gnark/backend/groth16/bn254 to version 0.11.0 or higher.
Overview
Affected versions of this package are vulnerable to Exposure of Sensitive Information to an Unauthorized Actor due to the handling of multiple commitments within the circuit. An attacker can manipulate the soundness of the entire circuit by choosing all but the last commitment, which are used as random challenges for optimized non-native multiplication, lookup checks, and other operations. This is only exploitable if the native Groth16 verifier is implemented or used with multiple commitments.
Workaround
This vulnerability can be mitigated by following gnark maintainers' recommendation to use only a single commitment and then derive in-circuit commitments as needed using the std/multicommit package.