wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/crypto
History
Dr. Stephen Henson 2b4029e68f Avoid overflow in MDC2_Update() 
Thanks to Shi Lei for reporting this issue.

CVE-2016-6303

Reviewed-by: Matt Caswell <matt@openssl.org>
(cherry picked from commit 55d83bf7c1)
2016-08-24 14:24:53 +01:00
..
aes Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
asn1 Fix off by 1 in ASN1_STRING_set() 2016-08-20 19:02:12 +02:00
bf RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
bio Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
bn Fix overflow check in BN_bn2dec() 2016-08-22 17:10:59 +01:00
buffer BUF_strndup: tidy 2015-09-22 20:09:42 +02:00
camellia Fix URLs mangled by reformat 2015-12-19 20:40:39 +00:00
cast RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
cmac RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
cms Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
comp Fix the no-comp option for Windows 2016-03-18 12:17:06 +00:00
conf mark openssl configuration as loaded at end of OPENSSL_config 2015-11-24 22:05:47 +01:00
des Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
dh RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
dsa Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
dso Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
ec Fix URLs mangled by reformat 2015-12-19 20:40:39 +00:00
ecdh RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
ecdsa RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
engine Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
err RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
evp Convert memset calls to OPENSSL_cleanse 2016-06-30 15:56:16 +01:00
hmac Fix memory leaks and other mistakes on errors 2015-10-23 20:38:52 +02:00
idea RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
jpake Fix missing malloc return value checks 2015-11-09 23:00:37 +00:00
krb5 RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
lhash RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
md2 Convert memset calls to OPENSSL_cleanse 2016-06-30 15:56:16 +01:00
md4 RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
md5 RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
mdc2 Avoid overflow in MDC2_Update() 2016-08-24 14:24:53 +01:00
modes modes/ctr128.c: pay attention to ecount_buf alignment in CRYPTO_ctr128_encrypt. 2016-02-12 22:01:13 +01:00
objects RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
ocsp Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
pem make update to have PEM_R_HEADER_TOO_LONG defined 2016-08-16 13:54:46 +01:00
perlasm perlasm/x86_64-xlate.pl: handle inter-bank movd. 2016-03-01 11:27:40 +00:00
pkcs7 Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
pkcs12 Sanity check input length in OPENSSL_uni2asc(). 2016-08-05 19:01:55 +01:00
pqueue RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
rand Convert memset calls to OPENSSL_cleanse 2016-06-30 15:56:16 +01:00
rc2 RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
rc4 Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
rc5 RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
ripemd RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
rsa Revert "Don't check RSA_FLAG_SIGN_VER." 2016-02-27 13:38:01 +01:00
seed Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
sha Cleanup the EVP_MD_CTX before exit rather than after 2015-12-08 12:07:22 +01:00
srp Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
stack RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
store Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
threads
ts Fix OOB read in TS_OBJ_print_bio(). 2016-07-22 15:17:38 +01:00
txt_db RT4044: Remove .cvsignore files. 2015-09-15 12:00:18 -04:00
ui Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
whrlpool Convert memset calls to OPENSSL_cleanse 2016-06-30 15:56:16 +01:00
x509 Fix proxy certificate pathlength verification 2016-06-30 01:00:26 +02:00
x509v3 Ensure verify error is set when X509_verify_cert() fails 2016-05-26 16:36:49 -04:00
alphacpuid.pl
arm_arch.h
armcap.c
armv4cpuid.S
constant_time_locl.h
constant_time_test.c
cpt_err.c
cryptlib.c RT3823: Improve the robustness of event logging 2015-09-21 14:36:39 -04:00
cryptlib.h
crypto-lib.com
crypto.h
cversion.c
ebcdic.c
ebcdic.h
ex_data.c
fips_err.h
fips_ers.c
ia64cpuid.S
install-crypto.com
LPdir_nyi.c
LPdir_unix.c
LPdir_vms.c
LPdir_win.c
LPdir_win32.c
LPdir_wince.c
Makefile
md32_common.h Convert memset calls to OPENSSL_cleanse 2016-06-30 15:56:16 +01:00
mem.c
mem_clr.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
mem_dbg.c
o_dir.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_dir.h Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_dir_test.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_fips.c
o_init.c
o_str.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_str.h Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_time.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
o_time.h Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
opensslconf.h.in Use both sun and __sun 2015-11-24 23:44:50 +01:00
opensslv.h Prepare for 1.0.1u-dev 2016-05-03 14:50:37 +01:00
ossl_typ.h
pariscid.pl
ppccap.c
ppccpuid.pl
s390xcap.c
s390xcpuid.S
sparccpuid.S
sparcv9cap.c
symhacks.h
uid.c
vms_rms.h
x86_64cpuid.pl
x86cpuid.pl