FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

liboqs -- Secret-dependent branching in HQC

Affected packages
liboqs < 0.14.0

Details

VuXML ID aeac223e-60e1-11f0-8baa-8447094a420f
Discovery 2025-07-10
Entry 2025-07-14

The OpenQuantumSafe project reports:

Secret-dependent branching in HQC reference implementation when compiled with Clang 17-20 for optimizations above -O0

[source]

References

CVE Name CVE-2025-52473
URL https://github.com/open-quantum-safe/liboqs/security/advisories/GHSA-qq3m-rq9v-jfgm

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.