generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
8,669 Commits 16 Branches 258 Tags
Commit Graph

3 Commits

Author SHA1 Message Date
Dr. Stephen Henson
f51f374199 Set Enveloped data version to 2 if ktri version not zero. 
(cherry picked from commit 9c5d953a07f472452ae2cb578e39eddea2de2b9c)
 2014-05-06 14:05:05 +01:00
Dr. Stephen Henson
4f2fc3c2dd Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and 
continue with symmetric decryption process to avoid leaking timing
information to an attacker.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)
 2012-03-12 14:51:45 +00:00
Dr. Stephen Henson
94b2c29f9d Backport of CMS code to 0.9.8-stable branch. Disabled by default. 2008-04-03 23:03:56 +00:00