[openssl] OpenSSL_1_0_2-stable update
Matt Caswell
matt at openssl.org
Tue Sep 10 11:10:06 UTC 2019
The branch OpenSSL_1_0_2-stable has been updated
via 26080054209056b899fe677ee8393972a924cde5 (commit)
from e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f (commit)
- Log -----------------------------------------------------------------
commit 26080054209056b899fe677ee8393972a924cde5
Author: Matt Caswell <matt at openssl.org>
Date: Tue Sep 10 11:58:18 2019 +0100
Remove duplicate CHANGES entry
Reviewed-by: Richard Levitte <levitte at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/9846)
-----------------------------------------------------------------------
Summary of changes:
CHANGES | 13 +------------
NEWS | 2 +-
2 files changed, 2 insertions(+), 13 deletions(-)
diff --git a/CHANGES b/CHANGES
index dbe5c1d043..867106458c 100644
--- a/CHANGES
+++ b/CHANGES
@@ -9,18 +9,6 @@
Changes between 1.0.2s and 1.0.2t [xx XXX xxxx]
- *) Fixed a padding oracle in PKCS7_decrypt() and CMS_decrypt(). In situations
- where an attacker receives automated notification of the success or failure
- of a decryption attempt an attacker, after sending a very large number of
- messages to be decrypted, can recover a CMS/PKCS7 transported encryption
- key or decrypt any RSA encrypted message that was encrypted with the public
- RSA key, using a Bleichenbacher padding oracle attack. Applications are not
- affected if they use a certificate together with the private RSA key to the
- CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info
- to decrypt.
- (CVE-2019-1563)
- [Bernd Edlinger]
-
*) For built-in EC curves, ensure an EC_GROUP built from the curve name is
used even when parsing explicit parameters, when loading a serialized key
or calling `EC_GROUP_new_from_ecpkparameters()`/
@@ -51,6 +39,7 @@
certifiate is not given and all recipientInfo are tried out.
The old behaviour can be re-enabled in the CMS code by setting the
CMS_DEBUG_DECRYPT flag.
+ (CVE-2019-1563)
[Bernd Edlinger]
*) Document issue with installation paths in diverse Windows builds
diff --git a/NEWS b/NEWS
index c8159993e9..0d219d207c 100644
--- a/NEWS
+++ b/NEWS
@@ -7,7 +7,7 @@
Major changes between OpenSSL 1.0.2r and OpenSSL 1.0.2t [under development]
- o Fixed a padding oracle in PKCS7_decrypt() and CMS_decrypt()
+ o Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
(CVE-2019-1563)
o For built-in EC curves, ensure an EC_GROUP built from the curve name is
used even when parsing explicit parameters
More information about the openssl-commits
mailing list