generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/crypto
History
Dr. Stephen Henson 4f2fc3c2dd Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and 
continue with symmetric decryption process to avoid leaking timing
information to an attacker.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)
2012-03-12 14:51:45 +00:00
..
aes
fix bug in AES_unwrap()
2010-08-30 23:57:03 +00:00
asn1
Fix memory leak cause by race condition when creating public keys.
2012-02-28 14:47:36 +00:00
bf
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
bio
PR: 2755
2012-03-07 15:14:16 +00:00
bn
x86-mont.pl: fix bug in integer-only squaring path [from HEAD].
2011-12-09 14:28:48 +00:00
buffer
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
camellia
Make it build, plus make depend.
2009-09-27 14:04:33 +00:00
cast
Constify crypto/cast.
2009-12-22 11:45:57 +00:00
cms
Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and
2012-03-12 14:51:45 +00:00
comp
Assorted bugfixes:
2011-02-03 12:04:48 +00:00
conf
PR: 2576
2011-09-02 11:20:49 +00:00
des
PR: 2266
2010-05-26 23:23:53 +00:00
dh
Change old obsolete email address...
2008-11-05 18:36:57 +00:00
dsa
PR: 2295
2010-10-11 23:28:54 +00:00
dso
Prevent aliasing warning
2009-10-04 14:02:35 +00:00
ec
PR: 2632
2011-10-26 16:42:48 +00:00
ecdh
Fix gcc 4.6 warnings. Check TLS server hello extension length.
2010-06-12 13:18:58 +00:00
ecdsa
fix warning
2012-01-10 14:37:00 +00:00
engine
oops, revert unrelated patches
2012-03-06 13:22:32 +00:00
err
PR: 2253
2010-05-15 00:36:40 +00:00
evp
PR: 2588
2011-09-01 13:48:48 +00:00
hmac
Fix gcc 4.6 warnings. Check TLS server hello extension length.
2010-06-12 13:18:58 +00:00
idea
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
jpake
Backport J-PAKE fix.
2010-11-26 16:03:23 +00:00
krb5
lhash
PR: 2124
2009-12-09 13:41:50 +00:00
md2
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
md4
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
md5
PR: 2094
2009-11-13 14:14:46 +00:00
mdc2
objects
Update OID table too.
2010-01-25 16:08:52 +00:00
ocsp
Fix the ECDSA timing attack mentioned in the paper at:
2011-05-25 14:52:54 +00:00
pem
Fix gcc 4.6 warnings. Check TLS server hello extension length.
2010-06-12 13:18:58 +00:00
perlasm
perlasm/cbc.pl: fix tail processing bug [from HEAD].
2011-07-13 06:25:15 +00:00
pkcs7
Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and
2012-03-12 14:51:45 +00:00
pkcs12
PR: 2295
2010-10-11 23:28:54 +00:00
pqueue
Fix gcc 4.6 warnings. Check TLS server hello extension length.
2010-06-12 13:18:58 +00:00
rand
rand_nw.c: compensate for gcc bug (using %edx instead of %eax at -O3)
2010-07-08 09:15:14 +00:00
rc2
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
rc4
rc4_skey.c [0.9.8]: at some point rc4_skey and x86[_64]cpuid were modified
2011-06-06 19:58:21 +00:00
rc5
ripemd
PR: 1835
2009-02-14 21:50:14 +00:00
rsa
BN_BLINDING multi-threading fix.
2011-10-19 14:57:59 +00:00
seed
sha
Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
2009-05-15 16:37:29 +00:00
stack
PR: 2386
2010-12-02 18:02:02 +00:00
store
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
threads
Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).
2009-05-15 16:37:29 +00:00
txt_db
ui
Fix warnings about ignoring fgets return value
2009-10-04 16:43:39 +00:00
x509
PR: 2606
2011-09-23 13:40:06 +00:00
x509v3
PR: 2696 Submitted by: Rob Austein <sra@hactrn.net>
2012-03-06 13:37:52 +00:00
.cvsignore
cpt_err.c
cryptlib.c
PR: 2470
2011-06-22 15:39:19 +00:00
cryptlib.h
crypto-lib.com
Have an underscore before <ARCH> to make sure any future architecture
2010-03-25 14:45:22 +00:00
crypto.h
Move OPENSSL_init declaration out of auto-generated code section
2011-09-05 09:52:58 +00:00
cversion.c
dyn_lck.c
ebcdic.c
ebcdic.h
ex_data.c
fips_err.c
fips_err.h
ia64cpuid.S
install.com
Remove tmdiff.h from EXHEADERS as it doesn't exist.
2009-08-25 07:28:18 +00:00
LPdir_nyi.c
LPdir_unix.c
LPdir_vms.c
LPdir_win32.c
LPdir_win.c
LPdir_wince.c
Makefile
Make update: delete duplicate error code.
2008-09-17 17:11:09 +00:00
md32_common.h
md32_common.h: fix copy-n-paste typo. The typo was present in 098 only.
2010-03-29 11:23:11 +00:00
mem_clr.c
mem_dbg.c
Move new function CRYPTO_strdup to mem_dbg.c because mem.c is excluded in
2008-11-24 17:02:49 +00:00
mem.c
Move new function CRYPTO_strdup to mem_dbg.c because mem.c is excluded in
2008-11-24 17:02:49 +00:00
o_dir_test.c
o_dir.c
o_dir.h
o_init.c
PR: 2202 (partial)
2010-03-25 12:17:17 +00:00
o_str.c
Update from HEAD.
2009-06-01 12:14:53 +00:00
o_str.h
o_time.c
o_time.h
opensslconf.h.in
Implement Configure option pattern "experimental-foo"
2008-12-02 01:21:06 +00:00
opensslv.h
prepare for next version
2012-01-18 14:27:13 +00:00
ossl_typ.h
Avoid conflict with some version of Windows platform SDK.
2008-11-11 12:22:17 +00:00
sparccpuid.S
symhacks.h
Add t1_reneg to the VMS build.
2010-02-22 07:05:24 +00:00
tmdiff.c
tmdiff.h
uid.c
x86_64cpuid.pl
x86cpuid.pl