pkgsrc

kpriv/pkgsrc

Fork 0

Commit graph

Author	SHA1	Message	Date
sommerfeld	e57df8ae94	Revised buffer-overrun fix from CERT CA-99-15 (believed more complete than previous fix).	1999-12-14 21:43:05 +00:00
sommerfeld	f310eb04c3	Range-check input buffer length against maximum modulus size. For RSA*Encrypt() routines, require 3 bytes extra space for PKCS tags. From Bugtraq posting <3845D352.95E47E26@core-sdi.com>, by Gerardo Richarte <core.lists.bugtraq@CORE-SDI.COM>, dated Wed, 1 Dec 1999 23:09:12 -0300 If you build packages with USE_RSAREF2 set, it is advisable to update the rsaref package and any packages which may depend on it (openssl, pgp2, ssh).	1999-12-02 17:20:13 +00:00
tv	e7e9b546fd	Expose RSAPublicBlock() and RSAPrivateBlock() for the benefit of hpack. Also clean up the package a bit while we're here; allow ${CC} from the environment. Now called "rsaref-2.0p1".	1999-05-23 21:12:01 +00:00

Author

SHA1

Message

Date

sommerfeld

e57df8ae94

Revised buffer-overrun fix from CERT CA-99-15

(believed more complete than previous fix).

1999-12-14 21:43:05 +00:00

sommerfeld

f310eb04c3

Range-check input buffer length against maximum modulus size. For

RSA*Encrypt() routines, require 3 bytes extra space for PKCS tags.

From Bugtraq posting <3845D352.95E47E26@core-sdi.com>, by
Gerardo Richarte <core.lists.bugtraq@CORE-SDI.COM>, dated
Wed, 1 Dec 1999 23:09:12 -0300

If you build packages with USE_RSAREF2 set, it is advisable to update
the rsaref package and any packages which may depend on it (openssl,
pgp2, ssh).

1999-12-02 17:20:13 +00:00

e7e9b546fd

Expose RSAPublicBlock() and RSAPrivateBlock() for the benefit of hpack.

Also clean up the package a bit while we're here; allow ${CC} from the
environment.  Now called "rsaref-2.0p1".

1999-05-23 21:12:01 +00:00

3 commits