CVS commit: [netbsd-3-0] src/crypto/dist/openssl/crypto/bn

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-3-0] src/crypto/dist/openssl/crypto/bn
From: Julian Coleman <jdc%netbsd.org@localhost>
Date: Tue, 13 May 2008 06:26:26 +0000 (UTC)

Module Name:    src
Committed By:   jdc
Date:           Tue May 13 06:26:26 UTC 2008

Modified Files:
        src/crypto/dist/openssl/crypto/bn [netbsd-3-0]: bn_mont.c

Log Message:
Pull up revision 1.2 (via patch), requested by adrianp in ticket #1931).

Fix for CVE-2007-3108

The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and
earlier does not properly perform Montgomery multiplication, which might
allow local users to conduct a side-channel attack and retrieve RSA
private keys.


To generate a diff of this commit:
cvs rdiff -r1.1.1.5 -r1.1.1.5.10.1 \
    src/crypto/dist/openssl/crypto/bn/bn_mont.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-3] src/crypto/dist/openssl/crypto/bn
Next by Date: CVS commit: [netbsd-3-1] src/crypto/dist/openssl/crypto/bn
Previous by Thread: CVS commit: [netbsd-3] src/crypto/dist/openssl/crypto/bn
Next by Thread: CVS commit: [netbsd-3-1] src/crypto/dist/openssl/crypto/bn
Indexes:

Home | Main Index | Thread Index | Old Index