From 733ac56d1d821d855345d63948d0d253bbb95766 Mon Sep 17 00:00:00 2001
From: Denis Varlakov <denis@dfns.co>
Date: Thu, 18 Jul 2024 10:59:49 +0200
Subject: [PATCH] Add advisory for unambigious challenge derivation in cggmp21

---
 crates/cggmp21-keygen/RUSTSEC-0000-0000.md | 19 +++++++++++++++++++
 crates/cggmp21/RUSTSEC-0000-0000.md        | 19 +++++++++++++++++++
 crates/paillier-zk/RUSTSEC-0000-0000.md    | 19 +++++++++++++++++++
 3 files changed, 57 insertions(+)
 create mode 100644 crates/cggmp21-keygen/RUSTSEC-0000-0000.md
 create mode 100644 crates/cggmp21/RUSTSEC-0000-0000.md
 create mode 100644 crates/paillier-zk/RUSTSEC-0000-0000.md

diff --git a/crates/cggmp21-keygen/RUSTSEC-0000-0000.md b/crates/cggmp21-keygen/RUSTSEC-0000-0000.md
new file mode 100644
index 000000000..3746d737e
--- /dev/null
+++ b/crates/cggmp21-keygen/RUSTSEC-0000-0000.md
@@ -0,0 +1,19 @@
+```toml
+[advisory]
+id = "RUSTSEC-0000-0000"
+
+package = "cggmp21-keygen"
+date = "2024-07-18"
+url = "https://github.com/dfns/cggmp21/pull/103"
+categories = ["crypto-failure"]
+
+keywords = ["mpc", "tss", "zkp"]
+
+[versions]
+patched = [">= 0.3.0"]
+```
+
+# Ambiguous challenge derivation
+
+Challenge derivation in non-interactive ZK proofs was ambiguous and that could lead
+to security vulnerability (however, it's unknown if it could be exploited).
diff --git a/crates/cggmp21/RUSTSEC-0000-0000.md b/crates/cggmp21/RUSTSEC-0000-0000.md
new file mode 100644
index 000000000..6110328bc
--- /dev/null
+++ b/crates/cggmp21/RUSTSEC-0000-0000.md
@@ -0,0 +1,19 @@
+```toml
+[advisory]
+id = "RUSTSEC-0000-0000"
+
+package = "cggmp21"
+date = "2024-07-18"
+url = "https://github.com/dfns/cggmp21/pull/103"
+categories = ["crypto-failure"]
+
+keywords = ["mpc", "tss", "zkp"]
+
+[versions]
+patched = [">= 0.4.0"]
+```
+
+# Ambiguous challenge derivation
+
+Challenge derivation in non-interactive ZK proofs was ambiguous and that could lead
+to security vulnerability (however, it's unknown if it could be exploited).
diff --git a/crates/paillier-zk/RUSTSEC-0000-0000.md b/crates/paillier-zk/RUSTSEC-0000-0000.md
new file mode 100644
index 000000000..666993dbf
--- /dev/null
+++ b/crates/paillier-zk/RUSTSEC-0000-0000.md
@@ -0,0 +1,19 @@
+```toml
+[advisory]
+id = "RUSTSEC-0000-0000"
+
+package = "paillier-zk"
+date = "2024-07-18"
+url = "https://github.com/dfns/paillier-zk/pull/49"
+categories = ["crypto-failure"]
+
+keywords = ["mpc", "tss", "zkp"]
+
+[versions]
+patched = [">= 0.4.0"]
+```
+
+# Ambiguous challenge derivation
+
+Challenge derivation in non-interactive ZK proofs was ambiguous and that could lead
+to security vulnerability (however, it's unknown if it could be exploited).