git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	fullwaywang <fullwaywang@tencent.com>
	Wed, 21 Jun 2023 07:00:06 +0000 (15:00 +0800)
committer	Pauli <pauli@openssl.org>
	Sun, 25 Jun 2023 22:07:55 +0000 (08:07 +1000)
commit	43596b306b1fe06da3b1a99e07c0cf235898010d
tree	c9e7d43f693a778cd1e5483a284a3c8bd4a84782	tree
parent	a7c54dde5189f11c046f638e5aaf2004aee34202	commit \| diff

Check for 0 modulus in BN_RECP_CTX_set.
The function BN_RECP_CTX_set did not check whether arg d is zero,
in which case an early failure should be returned to the invoker.
This is a similar fix to the cognate defect of CVE-2015-1794.

Fixes #21111

CLA: trivial

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/21255)

crypto/bn/bn_recp.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom