LibTomCrypt contains a flaw in the implementation of the El Gamal signature algorithm. The issue is due to a mathematical error within the El Gamal signature algorithm. This flaw may allow a remote attacker to create valid signatures and sign arbitrary messages without the private key via an application that uses the ECC (Elliptic Curve Cryptosystem) signature scheme routines.
It has been reported that this issue has been fixed. Upgrade to version 1.03, or higher, to address this vulnerability.