openssl

History

Dr. Stephen Henson 8186c00ef3 Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

continue with symmetric decryption process to avoid leaking timing
information to an attacker.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)

2012-03-12 16:27:50 +00:00

.cvsignore

.cvignore file for cms

2008-03-13 00:50:02 +00:00

cms_asn1.c

Backport of password based CMS support from HEAD.

2011-10-09 15:28:02 +00:00

cms_att.c

And so it begins...

2008-03-12 21:14:28 +00:00

cms_cd.c

Remove unnecessary header.

2008-03-29 21:08:37 +00:00

cms_dd.c

Remove unnecessary header.

2008-03-29 21:08:37 +00:00

cms_enc.c

Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

2012-03-12 16:27:50 +00:00

cms_env.c

Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

2012-03-12 16:27:50 +00:00

cms_err.c

Backport of password based CMS support from HEAD.

2011-10-09 15:28:02 +00:00

cms_ess.c

Submitted by: Julia Lawall <julia@diku.dk>

2009-09-13 11:27:27 +00:00

cms_io.c

Use correct headers for signed receipts. Use consistent naming.

2008-03-31 15:03:55 +00:00

cms_lcl.h

Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

2012-03-12 16:27:50 +00:00

cms_lib.c

Backport libcrypto audit: check return values of EVP functions instead

2011-06-03 20:53:00 +00:00

cms_pwri.c

Backport ossl_ssize_t type from HEAD.

2011-10-10 22:33:50 +00:00

cms_sd.c

Backport libcrypto audit: check return values of EVP functions instead

2011-06-03 20:53:00 +00:00

cms_smime.c

Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

2012-03-12 16:27:50 +00:00

cms.h

Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and

2012-03-12 16:27:50 +00:00

Makefile

"make update"

2011-10-19 15:24:44 +00:00