From: Ulf Möller <ulf@openssl.org>
Date: Wed, 6 Jun 2001 17:17:53 +0000 (+0000)
Subject: make sure we don't write to seed[-1]
X-Git-Tag: OpenSSL_0_9_6c~182^2~127
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=ee8aa8217abc66c7d5d280960755a0180a20757d;p=oweals%2Fopenssl.git

make sure we don't write to seed[-1]
---

diff --git a/crypto/rsa/rsa_oaep.c b/crypto/rsa/rsa_oaep.c
index e3d81a7a37..a3361dc3d7 100644
--- a/crypto/rsa/rsa_oaep.c
+++ b/crypto/rsa/rsa_oaep.c
@@ -111,6 +111,11 @@ int RSA_padding_check_PKCS1_OAEP(unsigned char *to, int tlen,
 	}
 
     lzero = num - flen;
+    if (lzero < 0)
+    {
+    RSAerr(RSA_F_RSA_PADDING_CHECK_PKCS1_OAEP, RSA_R_OAEP_DECODING_ERROR);
+    return (-1);
+    }
     maskeddb = from - lzero + SHA_DIGEST_LENGTH;
     
     MGF1(seed, SHA_DIGEST_LENGTH, maskeddb, dblen);