These issues all stem from the RC4-based RNG implementation (with insecure
fallback entropy) in Tom Wu's jsbn library, published here:

Please refer to Tom Wu's URL, or this more up-to-date fork of Tom Wu's code
(published to NPM): -- my repository on
GitHub was only ever intended to be a straight mirror of Tom Wu's code (created
over 7 years ago!).  I'll probably delete my mirror repository given that there
are now better JavaScript bignum alternatives, and in light of this report.


> On 9 Apr 2018, at 22:11, wrote:
> Here's the code in question:
> Best,
> Mustafa

Jason Davies,

bitcoin-dev mailing list

Reply via email to