(Looks like I cannot edit the description anymore…)
There is also a nice write-up by the person who found the bug:
http://ccsinjection.lepidum.co.jp/blog/2014-06-05/CCS-Injection-en/index.html
PDF: http://www.openwall.com/presentations/PHDays2014-Yescrypt/PHDays2014-Yescrypt.pdf
Spec: https://password-hashing.net/submissions/specs/yescrypt-v0.pdf
(Looks like I cannot edit the description anymore…)
There is also a nice write-up by the person who found the bug:
http://ccsinjection.lepidum.co.jp/blog/2014-06-05/CCS-Injection-en/index.html