https://miscreants.github.io/blog.trailofbits.com/authors/markus-schiffermuller/Recent content in Markus Schiffermuller on The Trail of Bits BlogHugoen-usTue, 18 Nov 2025 00:00:00 -0500https://miscreants.github.io/blog.trailofbits.com/2025/11/18/we-found-cryptography-bugs-in-the-elliptic-library-using-wycheproof/Tue, 18 Nov 2025 07:00:00 -0500https://miscreants.github.io/blog.trailofbits.com/2025/11/18/we-found-cryptography-bugs-in-the-elliptic-library-using-wycheproof/Trail of Bits discovered and disclosed two vulnerabilities in the widely used elliptic JavaScript library that could allow signature forgery or prevent valid signature verification, with one vulnerability still unfixed after the 90-day disclosure window.