Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
19 Aug 2022
30 Jul 2022
Wouter Castryck, Thomas Decru
How to fix?
oqs to version 0.7.2 or higher.
oqs is a package providing safe Rust bindings for the liboqs C library
Affected versions of this package are vulnerable to Inadequate Encryption Strength in implementation of the SIDH protocol, which exposes secret
SIKEp751 keys. The affected schemes are the
oqs::kem::Algorithm::Sidh* enum variants.