Tags · OrangeDS/botan

Correct the PointGFp check for CVE-2016-2195

Remi Gacogne pointed out that the check intended for the y coordinate
instead checks x again. The overflow is still avoided in 1.10.11
however, because of the size check in bigint_mul and bigint_sqr also
added in that release.

Feb 3, 2016
94a3fa8
zip
tar.gz

1.11.28

Fix two bugs in 1.11.27 which caused test failures.

The check on each individual size in curve_mul is too strict since
we rely on redc(x*1) during the on the curve computation.

Fix an off by one in ressol which caused it to occasionally reject
valid values.

Updating version 1.11.28 since existing 1.11.27 tag already pushed :(

Fix an off-by-one in ressol which would cause it to occasionly
give up too early.

Feb 1, 2016
87a59dd
zip
tar.gz

1.11.27

Update news for 1.11.27 release

Feb 1, 2016
fb22198
zip
tar.gz

1.10.11

Fix ressol and point multiplication bugs

Infinite loop during modular square root with invalid inputs.
CVE-2016-2194

Heap overflow in ECC point. CVE-2016-2195

Update version to 1.10.11

Feb 1, 2016
43462f8
zip
tar.gz

PreviousNext

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

1.11.32

1.11.31

1.11.30

1.10.13

1.11.29

1.8.15

1.10.12

1.11.28

1.11.27

1.10.11

Tags: OrangeDS/botan