[ruby-cvs:63069] nagachika:r55904 (ruby_2_3): merge revision(s) 55175: [Backport #12428]

nagachika at ruby-lang.org nagachika at ruby-lang.org
Tue Aug 16 03:49:32 JST 2016


nagachika	2016-08-16 03:49:32 +0900 (Tue, 16 Aug 2016)

  New Revision: 55904

  https://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=55904

  Log:
    merge revision(s) 55175: [Backport #12428]
    
    * ext/openssl/ossl_pkey_dh.c (ossl_dh_compute_key): Check that the DH
      has 'p' (the prime) before calling DH_size(). We can create a DH with
      no parameter but DH_size() does not check and dereferences NULL.
      [ruby-core:75720] [Bug #12428]
    
    * ext/openssl/ossl_pkey_dsa.c (ossl_dsa_sign): Ditto. DSA_size() does
      not check dsa->q.
    
    * ext/openssl/ossl_pkey_rsa.c (ossl_rsa_public_encrypt,
      ossl_rsa_public_decrypt, ossl_rsa_private_encrypt,
      ossl_rsa_private_decrypt): Ditto. RSA_size() does not check rsa->n.

  Modified directories:
    branches/ruby_2_3/
  Modified files:
    branches/ruby_2_3/ChangeLog
    branches/ruby_2_3/ext/openssl/ossl_pkey_dh.c
    branches/ruby_2_3/ext/openssl/ossl_pkey_dsa.c
    branches/ruby_2_3/ext/openssl/ossl_pkey_rsa.c
    branches/ruby_2_3/version.h


More information about the ruby-cvs mailing list