- Fixed potential memory zeroization on miscrafted RSA key

2024-11-22 12:45:39 +01:00 · 2012-07-05 13:58:08 +00:00 · 2012-07-05 13:58:08 +00:00 · 3c16db9a10
commit 3c16db9a10
parent 5552c8c0b3
2 changed files with 3 additions and 1 deletions
--- a/2
+++ b/2
@ -51,6 +51,8 @@ Security
     Frama-C team at CEA LIST)
   * Fixed generation of DHM parameters to correct length (found by Ruslan
     Yushchenko)
+   * Fixed potential memory zeroization on miscrafted RSA key (found by Eloi
+     Vanderbeken)

 = Version 1.1.3 released on 2012-04-29
 Bugfix
--- a/library/rsa.c
+++ b/library/rsa.c
@ -679,7 +679,7 @@ int rsa_pkcs1_sign( rsa_context *ctx,
                    return( POLARSSL_ERR_RSA_BAD_INPUT_DATA );
            }

-            if( nb_pad < 8 )
+            if( ( nb_pad < 8 ) || ( nb_pad > olen ) )
                return( POLARSSL_ERR_RSA_BAD_INPUT_DATA );

            *p++ = 0;