mirror of
https://github.com/openssl/openssl.git
synced 2025-01-18 13:44:20 +08:00
2198b3a55d
Originally a crash in 32-bit build was reported CHACHA20-POLY1305 cipher. The crash is triggered by truncated packet and is result of excessive hashing to the edge of accessible memory. Since hash operation is read-only it is not considered to be exploitable beyond a DoS condition. Other ciphers were hardened. Thanks to Robert Święcki for report. CVE-2017-3731 Reviewed-by: Rich Salz <rsalz@openssl.org> |
||
|---|---|---|
| .. | ||
| bio_b64.c | ||
| bio_enc.c | ||
| bio_md.c | ||
| bio_ok.c | ||
| build.info | ||
| c_allc.c | ||
| c_alld.c | ||
| cmeth_lib.c | ||
| digest.c | ||
| e_aes_cbc_hmac_sha1.c | ||
| e_aes_cbc_hmac_sha256.c | ||
| e_aes.c | ||
| e_bf.c | ||
| e_camellia.c | ||
| e_cast.c | ||
| e_chacha20_poly1305.c | ||
| e_des3.c | ||
| e_des.c | ||
| e_idea.c | ||
| e_null.c | ||
| e_old.c | ||
| e_rc2.c | ||
| e_rc4_hmac_md5.c | ||
| e_rc4.c | ||
| e_rc5.c | ||
| e_seed.c | ||
| e_xcbc_d.c | ||
| encode.c | ||
| evp_cnf.c | ||
| evp_enc.c | ||
| evp_err.c | ||
| evp_key.c | ||
| evp_lib.c | ||
| evp_locl.h | ||
| evp_pbe.c | ||
| evp_pkey.c | ||
| m_md2.c | ||
| m_md4.c | ||
| m_md5_sha1.c | ||
| m_md5.c | ||
| m_mdc2.c | ||
| m_null.c | ||
| m_ripemd.c | ||
| m_sha1.c | ||
| m_sigver.c | ||
| m_wp.c | ||
| names.c | ||
| p5_crpt2.c | ||
| p5_crpt.c | ||
| p_dec.c | ||
| p_enc.c | ||
| p_lib.c | ||
| p_open.c | ||
| p_seal.c | ||
| p_sign.c | ||
| p_verify.c | ||
| pmeth_fn.c | ||
| pmeth_gn.c | ||
| pmeth_lib.c | ||
| scrypt.c | ||