openssl/crypto/rsa
Dr. Stephen Henson 4b22cce381 Reject invalid PSS parameters.
Fix a bug where invalid PSS parameters are not rejected resulting in a
NULL pointer exception. This can be triggered during certificate
verification so could be a DoS attack against a client or a server
enabling client authentication.

Thanks to Brian Carpenter for reporting this issues.

CVE-2015-0208

Reviewed-by: Tim Hudson <tjh@openssl.org>
2015-03-19 12:58:35 +00:00
..
.cvsignore
Makefile RT3066: rewrite RSA padding checks to be slightly more constant time. 2014-09-24 12:47:19 +02:00
rsa.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_ameth.c Reject invalid PSS parameters. 2015-03-19 12:58:35 +00:00
rsa_asn1.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_chk.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_crpt.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_depr.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_eay.c Rerun util/openssl-format-source -v -c . 2015-01-22 09:31:48 +00:00
rsa_err.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_gen.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_lib.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_locl.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_none.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_null.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_oaep.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_pk1.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_pmeth.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_prn.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_pss.c Re-align some comments after running the reformat script. 2015-01-22 09:31:48 +00:00
rsa_saos.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_sign.c Remove obsolete support for old code. 2015-01-26 11:06:28 -05:00
rsa_ssl.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_test.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
rsa_x931.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00