Dr. David von Oheimb 69b995c6fb CMS_decrypt_set1_*(): fix NULL deref on unsuitable content type ... Fixes #19975 for CMS_decrypt_set1_pkey_and_peer() in the obvious way, and a related potential crash in CMS_decrypt_set1_password(). The point is that the input might have an unexpected content type, so a guard is needed at both places after `ec` is obtained. Note that in CMS_decrypt_set1_pkey_and_peer() there was no such ec != NULL guard for ``` if (ris != NULL) debug = ec->debug; ``` maybe because it is implied here by ris != NULL. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19981)		2023-02-08 16:33:29 +01:00
..
aes
aria
asn1	Fix a UAF resulting from a bug in BIO_new_NDEF	2023-02-07 17:05:10 +01:00
async
bf	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
bio	Fix incomplete error check on BIO_set_accept_name()	2023-02-08 09:35:19 -05:00
bn	Fix Timing Oracle in RSA decryption	2023-02-07 17:05:10 +01:00
buffer
camellia
cast	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
chacha
cmac
cmp	Fix Coverity 1520485: logically dead code	2023-01-26 10:25:33 +01:00
cms	CMS_decrypt_set1_*(): fix NULL deref on unsuitable content type	2023-02-08 16:33:29 +01:00
comp
conf
crmf
ct
des	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
dh
dsa
dso
ec	New function EC_GROUP_to_params to convert an EC_GROUP to an array of OSSL_PARAM.	2023-02-08 10:27:07 -05:00
encode_decode
engine
err
ess
evp
ffc	Fix NULL deference when validating FFC public key.	2023-02-07 17:05:10 +01:00
hmac
hpke
http	OSSL_HTTP_REQ_CTX_nbio(): use OSSL_TRACE_STRING() for msg body where it makes sense	2023-01-26 09:16:52 +01:00
idea	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
kdf
lhash
md2	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
md4	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
md5	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
mdc2	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
modes
objects
ocsp	Fix incomplete check on X509V3_add1_i2d()	2023-01-31 11:05:51 +11:00
pem	Avoid dangling ptrs in header and data params for PEM_read_bio_ex	2023-02-07 17:05:10 +01:00
perlasm	Restrict the Arm 'LDR REG, =VALUE' pseudo instruction on Neon, to appease clang	2023-02-08 09:30:08 -05:00
pkcs7	Support signedAndEnveloped content in PKCS7_decrypt()	2023-02-07 17:05:10 +01:00
pkcs12
poly1305
property
rand
rc2	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
rc4	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
rc5	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
ripemd	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
rsa	Fix Timing Oracle in RSA decryption	2023-02-07 17:05:10 +01:00
seed	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
sha
siphash
sm2
sm3
sm4	Fix SM4-XTS build failure on Mac mini M1	2023-02-06 12:36:07 +01:00
srp
stack
store
thread
ts
txt_db
ui
whrlpool	Avoid duplicating symbols in legacy.a with some build options	2023-01-31 11:10:22 +11:00
x509	Fix GENERAL_NAME_cmp for x400Address (master)	2023-02-07 17:05:10 +01:00
alphacpuid.pl
arm64cpuid.pl
arm_arch.h
armcap.c	Enable AES optimisation on Apple Silicon M2-based systems	2023-01-30 09:49:13 +11:00
armv4cpuid.pl
asn1_dsa.c
bsearch.c
build.info	Rationalize FIPS sources	2023-02-08 16:20:55 +01:00
c64xpluscpuid.pl
context.c
core_algorithm.c
core_fetch.c
core_namemap.c
cpt_err.c
cpuid.c
cryptlib.c
ctype.c
cversion.c
der_writer.c
deterministic_nonce.c
dllmain.c
ebcdic.c
ex_data.c
getenv.c
ia64cpuid.S
info.c
init.c
initthread.c
loongarch64cpuid.pl
loongarch_arch.h
loongarchcap.c
LPdir_nyi.c
LPdir_unix.c
LPdir_vms.c
LPdir_win32.c
LPdir_win.c
LPdir_wince.c
mem_clr.c
mem_sec.c
mem.c
mips_arch.h
o_dir.c
o_fopen.c
o_init.c
o_str.c
o_time.c
packet.c	Rationalize FIPS sources	2023-02-08 16:20:55 +01:00
param_build_set.c
param_build.c
params_dup.c
params_from_text.c
params.c
pariscid.pl
passphrase.c
ppccap.c
ppccpuid.pl
provider_child.c	Fix a potential memory leak in crypto/provider_child.c	2023-02-01 08:20:08 +11:00
provider_conf.c
provider_core.c
provider_local.h
provider_predefined.c
provider.c
punycode.c	Add more punycode tests and remove ossl_a2ucompare()	2023-02-08 16:17:37 +01:00
quic_vlint.c
README-sparse_array.md
riscv32cpuid.pl
riscv64cpuid.pl
riscvcap.c
s390x_arch.h
s390xcap.c
s390xcpuid.pl
self_test_core.c
sleep.c
sparccpuid.S
sparcv9cap.c
sparse_array.c
threads_lib.c
threads_none.c
threads_pthread.c
threads_win.c
time.c
trace.c
uid.c
vms_rms.h
x86_64cpuid.pl
x86cpuid.pl