[openssl/openssl] 4378e3: Limit size of modulus for BN_mod_exp_mont_consttime()
Tomáš Mráz
noreply at github.com
Thu Nov 10 16:45:08 UTC 2022
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: 4378e3cd2a4d73a97a2349efaa143059d8ed05e8
https://github.com/openssl/openssl/commit/4378e3cd2a4d73a97a2349efaa143059d8ed05e8
Author: Tomas Mraz <tomas at openssl.org>
Date: 2022-11-10 (Thu, 10 Nov 2022)
Changed paths:
M crypto/bn/bn_exp.c
M test/exptest.c
Log Message:
-----------
Limit size of modulus for BN_mod_exp_mont_consttime()
Otherwise the powerbufLen can overflow.
Issue reported by Jiayi Lin.
Reviewed-by: Matt Caswell <matt at openssl.org>
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
(Merged from https://github.com/openssl/openssl/pull/19632)
More information about the openssl-commits
mailing list