[openssl/openssl] 80645d: Limit size of modulus for BN_mod_exp_mont_consttime()
Tomáš Mráz
noreply at github.com
Thu Nov 10 16:45:08 UTC 2022
Branch: refs/heads/openssl-3.1
Home: https://github.com/openssl/openssl
Commit: 80645dfb8fd64eb9c14d09c24867d93ef9e9bd5c
https://github.com/openssl/openssl/commit/80645dfb8fd64eb9c14d09c24867d93ef9e9bd5c
Author: Tomas Mraz <tomas at openssl.org>
Date: 2022-11-10 (Thu, 10 Nov 2022)
Changed paths:
M crypto/bn/bn_exp.c
M test/exptest.c
Log Message:
-----------
Limit size of modulus for BN_mod_exp_mont_consttime()
Otherwise the powerbufLen can overflow.
Issue reported by Jiayi Lin.
Reviewed-by: Matt Caswell <matt at openssl.org>
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
(Merged from https://github.com/openssl/openssl/pull/19632)
(cherry picked from commit 4378e3cd2a4d73a97a2349efaa143059d8ed05e8)
More information about the openssl-commits
mailing list