]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ea3ee7e) | patch
Harden RSA public encrypt
authorViktor Dukhovni <openssl-users@dukhovni.org>
Thu, 11 Sep 2025 08:50:44 +0000 (18:50 +1000)
committerNeil Horman <nhorman@openssl.org>
Sun, 14 Sep 2025 02:07:41 +0000 (22:07 -0400)
commitf815ee19e066ddb0896041c92844e3c7fd36e3fd
treeebb7364a9c2253ab864eda47fff1ef5bd0d6d60dtree | snapshot
parentea3ee7e083251602fff34e6d659f2c0f401b6a5ecommit | diff
Harden RSA public encrypt

Check the that the indicated output buffer length is large enough.

Fix EVP_SealInit() to initialise the output buffer length to the RSA
modulus length, not the input KEK length.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28517)

(cherry picked from commit f34b1ad17ba37a76a96e53be3813d88bf2b329f2)
CHANGES.md diff | blob | blame | history
crypto/evp/p_seal.c diff | blob | blame | history
providers/implementations/asymciphers/rsa_enc.c.in diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git