]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bae259a) | patch
SM2: Use constant time modular inversion
authorTomas Mraz <tomas@openssl.org>
Thu, 11 Sep 2025 16:40:34 +0000 (18:40 +0200)
committerTomas Mraz <tomas@openssl.org>
Mon, 29 Sep 2025 10:02:14 +0000 (12:02 +0200)
commitfc47a2ec078912b3e914fab5734535e76c4820c2
treeee857a61660a82844b9f977c41ad3c2047bd129etree | snapshot
parentbae259a211ada6315dc50900686daaaaaa55f482commit | diff
SM2: Use constant time modular inversion

Fixes CVE-2025-9231

Issue and a proposed fix reported by Stanislav Fort (Aisle Research).

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(cherry picked from commit dff94dba75490d03926e77be9f2da3bcf4485820)
crypto/ec/ecp_sm2p256.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git