projects / openwrt / svn-archive / archive.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
[packages] strongswan4: backport 4.6.3 patch (CVE-2012-2388, #11576)
[openwrt/svn-archive/archive.git] / net / strongswan4 / patches / 400-CVE-2012-2388.patch
1 From 5a858c3197bbda9acda5289003e9015bef560dc7 Mon Sep 17 00:00:00 2001
2 From: Martin Willi <martin@revosec.ch>
3 Date: Mon, 7 May 2012 13:51:46 +0200
4 Subject: [PATCH] Fix boolean return value if an empty RSA signature is
5 detected in gmp plugin
6
7 ---
8 src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c | 2 +-
9 1 files changed, 1 insertions(+), 1 deletions(-)
10
11 --- a/src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c
12 +++ b/src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c
13 @@ -137,7 +137,7 @@ static bool verify_emsa_pkcs1_signature(
14
15 if (signature.len == 0 || signature.len > this->k)
16 {
17 - return INVALID_ARG;
18 + return FALSE;
19 }
20
21 /* unpack signature */
OpenWrt SVN history