projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b8552dc) | patch
crypto/evp: harden RC4_MD5 cipher.
authorAndy Polyakov <appro@openssl.org>
Wed, 18 Jan 2017 23:17:30 +0000 (00:17 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 26 Jan 2017 10:54:35 +0000 (10:54 +0000)
commitf3a7e57c92b2c9b87dc4b2997f2ebda6781300d0
tree91f7c1d2e1579c853a44aa25fac2fe2db34c8fbctree | snapshot
parentb8552dc80a611083754493283e72d51f3015753acommit | diff
crypto/evp: harden RC4_MD5 cipher.

Originally a crash in 32-bit build was reported CHACHA20-POLY1305
cipher. The crash is triggered by truncated packet and is result
of excessive hashing to the edge of accessible memory (or bogus
MAC value is produced if x86 MD5 assembly module is involved). Since
hash operation is read-only it is not considered to be exploitable
beyond a DoS condition.

Thanks to Robert Święcki for report.

CVE-2017-3731

Reviewed-by: Rich Salz <rsalz@openssl.org>
crypto/evp/e_rc4_hmac_md5.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.