Maven/Com.starkbank.ellipticcurve/Starkbank-Ecdsa

Improper Verification of Cryptographic Signature

The verify function in the Stark Bank Java ECDSA library (ecdsa-java) fails to check that the signature is non-zero, which allows attackers to forge signatures on arbitrary messages.

Advisories for Maven/Com.starkbank.ellipticcurve/Starkbank-Ecdsa package