CVE-2023-44273: 
vulnerability analysis and mitigation

Consensys gnark-crypto through version 0.11.2 contains a signature malleability vulnerability. The issue occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval. The vulnerability was discovered and disclosed in September 2023 (NVD).

The vulnerability stems from insufficient validation during signature deserialisation in both EdDSA and ECDSA implementations. Specifically, the code did not properly verify that signature values were within the valid interval [0, mod], where mod is the relevant modulus (field of definition of relevant group size of the curve). The vulnerability has been assigned a CVSS v3.1 base score of 9.8 CRITICAL with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (NVD).

The signature malleability vulnerability could allow an attacker to modify existing valid signatures while keeping them valid, potentially leading to signature forgery or replay attacks. This could compromise the integrity and authenticity of signed messages in systems using the affected library (NVD).

The vulnerability has been fixed in version 0.12.0 of gnark-crypto. The fix implements proper validation of signature values during deserialisation to ensure they fall within the valid interval. Users should upgrade to version 0.12.0 or later to address this vulnerability (GitHub Release).