]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b93a295) | patch
Fix an information leak in the RSA padding check code.
authorBernd Edlinger <bernd.edlinger@hotmail.de>
Mon, 31 Jul 2017 18:52:43 +0000 (20:52 +0200)
committerBernd Edlinger <bernd.edlinger@hotmail.de>
Mon, 31 Jul 2017 19:47:52 +0000 (21:47 +0200)
commite670db0183079b5f6325ce2abd9d785e0f966890
tree4b4807e32949a6a49ae984e772d0b1fbb8eaf311tree | snapshot
parentb93a295a36efe06fd767c8109220c9df739c2c3acommit | diff
Fix an information leak in the RSA padding check code.
The memory blocks contain secret data and must be
cleared before returning to the system heap.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4062)
crypto/rsa/rsa_oaep.c diff | blob | blame | history
crypto/rsa/rsa_pk1.c diff | blob | blame | history
A mirror of the official openssl repository