search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 4ee64c2) | patch
Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and
commitfc5eca05e7811e9ba7e5dd0762b3772728e4a459
authorsteve <steve>
Mon, 12 Mar 2012 14:51:43 +0000 (12 14:51 +0000)
committersteve <steve>
Mon, 12 Mar 2012 14:51:43 +0000 (12 14:51 +0000)
tree74f3fc17373af0053ce855a061fb9bb9defa622btree | snapshot (tar.gz zip)
parent4ee64c237652f88aa3576fe3b5e92ccd2cec8452commit | diff
Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and
continue with symmetric decryption process to avoid leaking timing
information to an attacker.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)
CHANGES diff | blob | blame | history
apps/cms.c diff | blob | blame | history
crypto/cms/cms.h diff | blob | blame | history
crypto/cms/cms_enc.c diff | blob | blame | history
crypto/cms/cms_env.c diff | blob | blame | history
crypto/cms/cms_lcl.h diff | blob | blame | history
crypto/cms/cms_smime.c diff | blob | blame | history
crypto/pkcs7/pk7_doit.c diff | blob | blame | history
Mirror of openssl cvs repository