rocket-tools/riscv-gnu-toolchain/qemu/roms/edk2/CryptoPkg/Library/OpensslLib/openssl.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Cesar Pereida Garcia <cesar.pereidagarcia@tut.fi>	2019-08-14 10:17:06 +0300
committer	Matt Caswell <matt@openssl.org>	2019-08-27 09:07:30 +0100
commit	724339ff44235149c4e8ddae614e1dda6863e23e (patch)
tree	c066fbe8fe14ba7b1e94a453b16a2aba0173c8e6 /Configurations/unix-Makefile.tmpl
parent	485d336137f2afa62e378bc39dcfa37dcfb222da (diff)
download	openssl-724339ff44235149c4e8ddae614e1dda6863e23e.zip openssl-724339ff44235149c4e8ddae614e1dda6863e23e.tar.gz openssl-724339ff44235149c4e8ddae614e1dda6863e23e.tar.bz2

Fix SCA vulnerability when using PVK and MSBLOB key formats

This commit addresses a side-channel vulnerability present when PVK and MSBLOB key formats are loaded into OpenSSL. The public key was not computed using a constant-time exponentiation function. This issue was discovered and reported by the NISEC group at TAU Finland. Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9587)

Diffstat (limited to 'Configurations/unix-Makefile.tmpl')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: