Source-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: [netbsd-3] src/crypto/dist/openssl/crypto/bn

Module Name:    src
Committed By:   jdc
Date:           Tue May 13 06:26:11 UTC 2008

Modified Files:
        src/crypto/dist/openssl/crypto/bn [netbsd-3]: bn_mont.c

Log Message:
Pull up revision 1.2 (via patch), requested by adrianp in ticket #1931).

Fix for CVE-2007-3108

The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and
earlier does not properly perform Montgomery multiplication, which might
allow local users to conduct a side-channel attack and retrieve RSA
private keys.

To generate a diff of this commit:
cvs rdiff -r1.1.1.5 -r1. src/crypto/dist/openssl/crypto/bn/bn_mont.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index