SwitchEmu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-03-12 05:22:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #782 from chris-jones-arm/mbedtls-2.16-restricted

Browse Source 
[Backport 2.16] Fix Diffie-Hellman large key size DoS
This commit is contained in:
Janos Follath
2020-12-07 09:27:55 +00:00
committed by GitHub
parent 4c1939738d 5dd1e266e1
commit bcfa41753d
6 changed files with 106 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ChangeLog.d/limit_size_of_diffie_hellman_calculations.txt Normal file
View File

@@ -0,0 +1,4 @@
Security
* Limit the size of calculations performed by mbedtls_mpi_exp_mod to
MBEDTLS_MPI_MAX_SIZE to prevent a potential denial of service when
generating Diffie-Hellman key pairs. Credit to OSS-Fuzz.