git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Neil Horman <nhorman@openssl.org>
	Mon, 15 Jul 2024 18:30:16 +0000 (14:30 -0400)
committer	Tomas Mraz <tomas@openssl.org>
	Wed, 17 Jul 2024 14:30:55 +0000 (16:30 +0200)
commit	22e08c7cdc596d4f16749811d1022fb8b07a8e41
tree	dc56e7611bbb350c423d9ff5accdae39f2800ffb	tree
parent	a753547eefc9739f341824a0cb0642afe7a06fcc	commit \| diff

Fix coverity-1604666

Coverity recently flaged an error in which the return value for
EVP_MD_get_size wasn't checked for negative values prior to use, which
can cause underflow later in the function.

Just add the check and error out if get_size returns an error.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24896)

crypto/rsa/rsa_oaep.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom