openssl/crypto/rsa
Mark J. Cox 951dfbb13a Introduce limits to prevent malicious keys being able to
cause a denial of service.  (CVE-2006-2940)
[Steve Henson, Bodo Moeller]

Fix ASN.1 parsing of certain invalid structures that can result
in a denial of service.  (CVE-2006-2937)  [Steve Henson]

Fix buffer overflow in SSL_get_shared_ciphers() function.
(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]

Fix SSL client code which could crash if connecting to a
malicious SSLv2 server.  (CVE-2006-4343)
[Tavis Ormandy and Will Drewry, Google Security Team]
2006-09-28 11:29:03 +00:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
Makefile Update filenames in makefiles 2006-02-04 01:49:36 +00:00
rsa.h Introduce limits to prevent malicious keys being able to 2006-09-28 11:29:03 +00:00
rsa_asn1.c Give everything prototypes (well, everything that's actually used). 2005-03-31 09:26:39 +00:00
rsa_chk.c This is a first-cut at improving the callback mechanisms used in 2002-12-08 05:24:31 +00:00
rsa_depr.c backport recent changes from the cvs head 2006-02-08 19:16:33 +00:00
rsa_eay.c Introduce limits to prevent malicious keys being able to 2006-09-28 11:29:03 +00:00
rsa_err.c Introduce limits to prevent malicious keys being able to 2006-09-28 11:29:03 +00:00
rsa_gen.c fix error found by coverity: check if ctx is != NULL before calling BN_CTX_end() 2006-03-13 23:12:08 +00:00
rsa_lib.c Fix memory leak. 2005-11-25 14:26:12 +00:00
rsa_none.c Constify the RSA library. 2000-11-06 22:34:17 +00:00
rsa_null.c Fix more error codes. 2005-05-11 03:45:39 +00:00
rsa_oaep.c Update from 0.9.7-stable branch. 2005-05-28 20:49:09 +00:00
rsa_pk1.c The logic in the main signing and verifying functions to check lengths was 2002-11-26 11:14:32 +00:00
rsa_pss.c fix warnings when building openssl with (gcc 3.3.1): 2005-08-28 23:20:52 +00:00
rsa_saos.c Add lots of checks for memory allocation failure, error codes to indicate 2004-12-05 01:03:15 +00:00
rsa_sign.c Avoid PKCS #1 v1.5 signature attack discovered by Daniel Bleichenbacher 2006-09-05 08:25:42 +00:00
rsa_ssl.c Constify the RSA library. 2000-11-06 22:34:17 +00:00
rsa_test.c Implement fixed-window exponentiation to mitigate hyper-threading 2005-05-16 01:43:31 +00:00
rsa_x931.c Update from head. 2005-06-06 22:41:50 +00:00