SwitchEmu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-03-11 18:16:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

DHM: Fix dhm_check_range() always returning 0

Browse Source 
Although the variable ret was initialised to an error, the
MBEDTLS_MPI_CHK macro was overwriting it. Therefore it ended up being
0 whenewer the bignum computation was successfull and stayed 0
independently of the actual check.
This commit is contained in:
Janos Follath
2017-09-20 15:33:24 +01:00
parent 4b151fabb7
commit aa325d7b7f
2 changed files with 12 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog
View File

@@ -1,6 +1,10 @@
mbed TLS ChangeLog (Sorted per branch, date)
= mbed TLS x.x.x released xxxx-xx-xx
= mbed TLS x.x.x branch released xxxx-xx-xx
Security
* Fix dhm_check_range() failing to detect trivial subgroups and essentially
always returning 0. Reported by prashantkspatil.
Bugfix
* Fix ssl_parse_record_header() to silently discard invalid DTLS records