{"id":"RUSTSEC-2025-0133","summary":"Incorrect calculation on aarch64","details":"On platforms without the `core::arch::aarch64::vxarq_u64` intrinsic, an unverified fallback in `libcrux-intrinsics` v0.0.3\npassed incorrect arguments and produced wrong results. This corrupted SHA-3 digests and caused `libcrux-ml-kem` and\n`libcrux-ml-dsa` to sample incorrectly, yielding incorrect shared secrets and invalid signatures.\n\nThe issue has been fixed in v0.0.4.","aliases":["GHSA-2cgv-28vr-rv6j"],"modified":"2025-12-06T07:57:51.529713Z","published":"2025-12-04T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/libcrux-intrinsics"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2025-0133.html"},{"type":"REPORT","url":"https://github.com/cryspen/libcrux/issues/1220"}],"affected":[{"package":{"name":"libcrux-intrinsics","ecosystem":"crates.io","purl":"pkg:cargo/libcrux-intrinsics"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.4-0"},{"fixed":"0.0.4"}]}],"ecosystem_specific":{"affected_functions":null,"affects":{"functions":[],"arch":["aarch64"],"os":[]}},"database_specific":{"cvss":null,"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2025-0133.json","categories":["crypto-failure"],"informational":null}}],"schema_version":"1.7.3"}