]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6f0e8f9) | patch
Harden RSA public encrypt
authorViktor Dukhovni <openssl-users@dukhovni.org>
Thu, 11 Sep 2025 08:50:44 +0000 (18:50 +1000)
committerNeil Horman <nhorman@openssl.org>
Tue, 16 Sep 2025 11:29:23 +0000 (07:29 -0400)
commitaae23e43c6d87e5dfa1f679a620b74e580158a15
treec6a1ca2638a853cbe2b9e96e0dc4c2f92584f551tree | snapshot
parent6f0e8f916bff2f85f63626e0c45e319481b18e2bcommit | diff
Harden RSA public encrypt

Check the that the indicated output buffer length is large enough.

Fix EVP_SealInit() to initialise the output buffer length to the RSA
modulus length, not the input KEK length.

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28536)
CHANGES.md diff | blob | blame | history
crypto/evp/p_seal.c diff | blob | blame | history
providers/implementations/asymciphers/rsa_enc.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git