projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e118487) | patch
Fix an information leak in the RSA padding check code.
authorBernd Edlinger <bernd.edlinger@hotmail.de>
Mon, 31 Jul 2017 18:52:43 +0000 (20:52 +0200)
committerBernd Edlinger <bernd.edlinger@hotmail.de>
Mon, 31 Jul 2017 19:50:31 +0000 (21:50 +0200)
commit09f87aa6a14f518c2fdf7170462b594c24a7c527
treedb6747a7e7d0340fdca5594a593ac1d31a6577dftree | snapshot
parente118487fee21ebdd959fe514be6b5c121462e272commit | diff
Fix an information leak in the RSA padding check code.
The memory blocks contain secret data and must be
cleared before returning to the system heap.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4062)

(cherry picked from commit e670db0183079b5f6325ce2abd9d785e0f966890)
crypto/rsa/rsa_oaep.c diff | blob | history
crypto/rsa/rsa_pk1.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.