openssl/crypto
Matt Caswell 512368c9ed Check for 0 modulus in BN_MONT_CTX_set
The function BN_MONT_CTX_set was assuming that the modulus was non-zero
and therefore that |mod->top| > 0. In an error situation that may not be
the case and could cause a seg fault.

This is a follow on from CVE-2015-1794.

Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-08-11 20:20:24 +01:00
..
aes Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
asn1 Add funtions to set item_sign and item_verify 2015-06-03 15:18:14 +01:00
bf Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
bio Remove one extraneous parenthesis 2015-06-16 13:13:48 +02:00
bn Check for 0 modulus in BN_MONT_CTX_set 2015-08-11 20:20:24 +01:00
buffer Replace memset with OPENSSL_cleanse() 2015-06-10 10:24:30 +01:00
camellia Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
cast Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
cmac Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
cms RT3917: add cleanup on an error path 2015-06-21 17:55:06 -04:00
comp Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
conf Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
des Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
dh RT3959: Fix misleading comment 2015-07-31 11:08:41 -04:00
dsa RT3774: double-free in DSA 2015-07-29 21:21:35 -04:00
dso Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
ec Fix warning when compiling with no-ec2m 2015-08-04 10:47:54 +01:00
ecdh Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
ecdsa Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
engine Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
err Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
evp Relax CCM tag check. 2015-07-06 18:35:35 +01:00
hmac RT3856: Fix memory leaks in test code 2015-06-23 08:04:19 -04:00
idea Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
jpake Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
krb5 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
lhash Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
md2 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
md4 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
md5 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
mdc2 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
modes Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
objects return correct NID for undefined object 2015-06-08 21:46:42 +01:00
ocsp Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
pem check for error when creating PKCS#8 structure 2015-05-28 18:01:52 +01:00
perlasm Fix crash in SPARC T4 XTS. 2015-02-24 10:12:57 +01:00
pkcs7 PKCS#7: Fix NULL dereference with missing EncryptedContent. 2015-06-11 14:52:39 +01:00
pkcs12 Don't output bogus errors in PKCS12_parse 2015-06-25 04:55:43 +01:00
pqueue Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
rand Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
rc2 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
rc4 Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
rc5 Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
ripemd Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
rsa use X9.31 keygen by default in FIPS mode 2015-07-30 14:34:45 +01:00
seed Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
sha Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
srp RT3856: Fix memory leaks in test code 2015-06-23 08:04:19 -04:00
stack Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
store Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
threads Cleanup mttest.c : because we no longer use stdio here, don't include it 2015-06-21 22:12:07 +02:00
ts Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
txt_db Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
ui Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
whrlpool Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
x509 Reject calls to X509_verify_cert that have not been reinitialised 2015-07-07 21:50:09 +01:00
x509v3 Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
.cvsignore
alphacpuid.pl Alpha assembler fixed from HEAD. 2011-08-12 12:31:08 +00:00
arm64cpuid.S Add linux-aarch64 taget. 2014-06-10 23:20:55 +02:00
arm_arch.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
armcap.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
armv4cpuid.S Remove inconsistency in ARM support. 2015-01-06 11:14:23 +01:00
constant_time_locl.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
constant_time_test.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
cpt_err.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
cryptlib.c RT3820: Don't call GetDesktopWindow() 2015-05-02 08:01:52 -04:00
cryptlib.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
crypto-lib.com Adjust VMS build to Unix build. Most of all, make it so the disabled 2014-06-18 13:43:09 +02:00
crypto.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
cversion.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
ebcdic.c Appease clang -Wempty-translation-unit 2015-04-08 17:59:40 +02:00
ebcdic.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
ex_data.c Fix memory leak reporting. 2015-02-09 13:01:15 +00:00
fips_err.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
fips_ers.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
ia64cpuid.S IA64 assembler pack update from HEAD. 2011-11-14 20:45:57 +00:00
install-crypto.com Adjust VMS build to Unix build. Most of all, make it so the disabled 2014-06-18 13:43:09 +02:00
LPdir_nyi.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
LPdir_unix.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
LPdir_vms.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
LPdir_win.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
LPdir_win32.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
LPdir_wince.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
Makefile Fix the update target and remove duplicate file updates 2015-05-23 06:25:12 +02:00
md32_common.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
mem.c Fix CRYPTO_strdup 2015-04-22 17:20:38 +01:00
mem_clr.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
mem_dbg.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_dir.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_dir.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_dir_test.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_fips.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_init.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_str.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_str.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
o_time.c Re-align some comments after running the reformat script. 2015-01-22 09:31:48 +00:00
o_time.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
opensslconf.h.in Make preprocessor error into real preprocessor error 2015-06-16 13:13:49 +02:00
opensslv.h Prepare for 1.0.2e-dev 2015-07-09 13:18:51 +01:00
ossl_typ.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
pariscid.pl PA-RISC assembler pack: switch to bve in 64-bit builds. 2013-06-30 23:13:23 +02:00
ppc_arch.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
ppccap.c RT3990: Fix #include path. 2015-08-05 22:06:22 -04:00
ppccpuid.pl Initial POWER8 support from development branch. 2014-07-20 14:36:49 +02:00
s390xcap.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
s390xcpuid.S s390x assembler pack update from HEAD. 2011-11-14 20:47:22 +00:00
sparc_arch.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
sparccpuid.S Conversion to UTF-8 where needed 2015-07-14 01:17:45 +02:00
sparcv9cap.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
symhacks.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
uid.c Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
vms_rms.h Run util/openssl-format-source -v -c . 2015-01-22 09:31:38 +00:00
x86_64cpuid.pl x86[_64]cpuid.pl: add low-level RDSEED. 2014-02-14 17:25:14 +01:00
x86cpuid.pl x86[_64]cpuid.pl: add low-level RDSEED. 2014-02-14 17:25:14 +01:00