Matt Caswell 6a009812b2 Check for 0 modulus in BN_MONT_CTX_set ...

The function BN_MONT_CTX_set was assuming that the modulus was non-zero
and therefore that |mod->top| > 0. In an error situation that may not be
the case and could cause a seg fault.

This is a follow on from CVE-2015-1794.

Reviewed-by: Richard Levitte <levitte@openssl.org>

2015-08-11 19:57:01 +01:00

..

aes

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

asn1

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

bf

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

bio

Check dgram_sctp_write() return value.

2015-06-28 18:21:06 +02:00

bn

Check for 0 modulus in BN_MONT_CTX_set

2015-08-11 19:57:01 +01:00

buffer

More secure storage of key material.

2015-06-23 17:09:35 -04:00

camellia

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

cast

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

cmac

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

cms

RT3917: add cleanup on an error path

2015-06-21 17:52:12 -04:00

comp

Fix -DZLIB build for opaque COMP types

2015-06-09 12:49:50 -04:00

conf

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

des

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

dh

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

dsa

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

dso

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

ec

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

ecdh

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

ecdsa

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

engine

Rewrite crypto/ex_data

2015-07-20 01:16:28 -04:00

err

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

evp

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

hmac

Fix ABI break with HMAC

2015-06-12 13:16:09 +01:00

idea

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

include/internal

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

jpake

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

lhash

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

md2

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

md4

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

md5

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

mdc2

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

modes

Conversion to UTF-8 where needed

2015-07-14 01:10:01 +02:00

objects

Add $! to errors, use script basename.

2015-06-23 08:39:52 -04:00

ocsp

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

pem

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

perlasm

Add assembly support for 32-bit iOS.

2015-04-20 15:06:22 +02:00

pkcs7

PKCS#7: Fix NULL dereference with missing EncryptedContent.

2015-06-11 11:06:31 +01:00

pkcs12

Don't output bogus errors in PKCS12_parse

2015-06-25 04:55:05 +01:00

pqueue

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

rand

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

rc2

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

rc4

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

rc5

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

ripemd

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

rsa

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

seed

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

sha

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

srp

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

stack

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

store

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

threads

Cleanup mttest.c : because we no longer use stdio here, don't include it

2015-06-21 21:45:48 +02:00

ts

Set error code, no fprintf stderr, on errors.

2015-06-04 18:03:33 -04:00

txt_db

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

ui

Fix the update target and remove duplicate file updates

2015-05-22 18:44:33 +02:00

whrlpool

Conversion to UTF-8 where needed

2015-07-14 01:10:01 +02:00

x509

RT3999: Remove sub-component version strings

2015-08-10 12:13:32 -04:00

x509v3

Conversion to UTF-8 where needed

2015-07-14 01:10:01 +02:00

alphacpuid.pl

alphacpuid.pl: fix alignment bug.

2011-08-12 12:28:52 +00:00

arm64cpuid.pl

Add assembly support to ios64-cross.

2015-01-23 15:38:41 +01:00

arm_arch.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

armcap.c

Add assembly support for 32-bit iOS.

2015-04-20 15:06:22 +02:00

armv4cpuid.pl

Add assembly support for 32-bit iOS.

2015-04-20 15:06:22 +02:00

c64xpluscpuid.pl

C64x+ assembly pack: make it work with older toolchain.

2014-05-04 16:38:32 +02:00

cpt_err.c

Rewrite crypto/ex_data

2015-07-20 01:16:28 -04:00

cryptlib.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

crypto-lib.com

Remove obsolete key formats.

2015-07-16 01:06:48 -04:00

cversion.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

ebcdic.c

Appease clang -Wempty-translation-unit

2015-04-04 17:05:49 +02:00

ex_data.c

Rewrite crypto/ex_data

2015-07-20 01:16:28 -04:00

fips_err.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

fips_ers.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

ia64cpuid.S

IA-64 assembler pack: fix typos and make it work on HP-UX.

2011-05-07 20:36:05 +00:00

install-crypto.com

Remove remaining Kerberos references

2015-05-13 15:08:10 +01:00

lock.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

LPdir_nyi.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

LPdir_unix.c

memset, memcpy, sizeof consistency fixes

2015-05-05 22:18:59 -04:00

LPdir_vms.c

memset, memcpy, sizeof consistency fixes

2015-05-05 22:18:59 -04:00

LPdir_win32.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

LPdir_win.c

memset, memcpy, sizeof consistency fixes

2015-05-05 22:18:59 -04:00

LPdir_wince.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

Makefile

More secure storage of key material.

2015-06-23 17:09:35 -04:00

mem_clr.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

mem_dbg.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

mem.c

More secure storage of key material.

2015-06-23 17:09:35 -04:00

o_dir_test.c

Identify and move OpenSSL internal header files

2015-05-14 15:13:49 +02:00

o_dir.c

Identify and move OpenSSL internal header files

2015-05-14 15:13:49 +02:00

o_fips.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

o_init.c

Dead code cleanup: crypto/*.c, x509v3, demos

2015-02-02 11:08:16 -05:00

o_str.c

Identify and move OpenSSL internal header files

2015-05-14 15:13:49 +02:00

o_time.c

Re-align some comments after running the reformat script.

2015-01-22 09:20:10 +00:00

opensslconf.h.in

Make preprocessor error into real preprocessor error

2015-06-16 13:10:24 +02:00

pariscid.pl

PA-RISC assembler pack: switch to bve in 64-bit builds.

2013-06-18 10:37:00 +02:00

ppc_arch.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

ppccap.c

RT3990: Fix #include path.

2015-08-05 22:06:01 -04:00

ppccpuid.pl

aesp8-ppc.pl: fix typos.

2014-06-04 08:34:18 +02:00

s390xcap.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

s390xcpuid.S

Multiple assembler packs: add experimental memory bus instrumentation.

2011-04-17 12:46:00 +00:00

sec_mem.c

Only define PAGE_SIZE if not already defined.

2015-07-31 20:50:07 +01:00

sparc_arch.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

sparccpuid.S

Conversion to UTF-8 where needed

2015-07-14 01:10:01 +02:00

sparcv9cap.c

Dead code cleanup: crypto/*.c, x509v3, demos

2015-02-02 11:08:16 -05:00

thr_id.c

Identify and move common internal libcrypto header files

2015-05-14 17:21:40 +02:00

uid.c

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

vms_rms.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

x86_64cpuid.pl

x86[_64]cpuid.pl: add low-level RDSEED.

2014-02-14 17:24:12 +01:00

x86cpuid.pl

Undo a90081576c94f9f54de1755188a00ccc1760549a

2014-08-09 08:02:20 -04:00