CVS commit: [netbsd-4-0] src/crypto/dist/openssl/crypto/bn

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-4-0] src/crypto/dist/openssl/crypto/bn
From: Julian Coleman <jdc%netbsd.org@localhost>
Date: Sun, 13 Apr 2008 11:07:14 +0000 (UTC)

Module Name:    src
Committed By:   jdc
Date:           Sun Apr 13 11:07:14 UTC 2008

Modified Files:
        src/crypto/dist/openssl/crypto/bn [netbsd-4-0]: bn_mont.c

Log Message:
Pull up revision 1.2 (requested by adrianp in ticket #1123).

Fix for CVE-2007-3108

The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and
earlier does not properly perform Montgomery multiplication, which might
allow local users to conduct a side-channel attack and retrieve RSA
private keys.


To generate a diff of this commit:
cvs rdiff -r1.1.1.9 -r1.1.1.9.12.1 \
    src/crypto/dist/openssl/crypto/bn/bn_mont.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: Re: CVS commit: src
Next by Date: CVS commit: [netbsd-4] src/crypto/dist/openssl/crypto/bn
Previous by Thread: CVS commit: src/sys/arch/i386/conf
Next by Thread: CVS commit: [netbsd-4] src/crypto/dist/openssl/crypto/bn
Indexes:

Home | Main Index | Thread Index | Old Index