]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5965ea5) | patch
SM2: Use constant time modular inversion
authorTomas Mraz <tomas@openssl.org>
Thu, 11 Sep 2025 16:40:34 +0000 (18:40 +0200)
committerTomas Mraz <tomas@openssl.org>
Mon, 29 Sep 2025 10:02:37 +0000 (12:02 +0200)
commit567f64386e43683888212226824b6a179885a0fe
treef4b1846da6a41a0c4aee4932047ce0a000dbcaectree | snapshot
parent5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45commit | diff
SM2: Use constant time modular inversion

Fixes CVE-2025-9231

Issue and a proposed fix reported by Stanislav Fort (Aisle Research).

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(cherry picked from commit dff94dba75490d03926e77be9f2da3bcf4485820)
crypto/ec/ecp_sm2p256.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git