openssl

Author	SHA1	Message	Date
Dr. Stephen Henson	f51f374199	Set Enveloped data version to 2 if ktri version not zero. (cherry picked from commit `9c5d953a07`)	2014-05-06 14:05:05 +01:00
Dr. Stephen Henson	4f2fc3c2dd	Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and continue with symmetric decryption process to avoid leaking timing information to an attacker. Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this issue. (CVE-2012-0884)	2012-03-12 14:51:45 +00:00
Dr. Stephen Henson	94b2c29f9d	Backport of CMS code to 0.9.8-stable branch. Disabled by default.	2008-04-03 23:03:56 +00:00