NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit0a3ee8a

committed

Cherry-pick security-relevant fixes from upstream imath library.

This covers alterations to buffer sizing and zeroing made between imath1.3 and imath 1.20. Valgrind Memcheck identified the buffer overrunsand reliance on uninitialized data; their exploit potential is unknown.Builds specifying --with-openssl are unaffected, because they use theOpenSSL BIGNUM facility instead of imath. Back-patch to 9.0 (allsupported versions).Security:CVE-2015-0243

1 parentce6f261 commit0a3ee8aCopy full SHA for 0a3ee8a

File tree

1 file changed

+15

-9

lines changed

contrib/pgcrypto
- imath.c

1 file changed

+15

-9

lines changed

`‎contrib/pgcrypto/imath.c‎`

Lines changed: 15 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -818,7 +818,8 @@ mp_int_mul(mp_int a, mp_int b, mp_int c)`
`818`	`818`	`*/`
`819`	`819`	`ua=MP_USED(a);`
`820`	`820`	`ub=MP_USED(b);`
`821`		`-osize=ua+ub;`
	`821`	`+osize=MAX(ua,ub);`
	`822`	`+osize=4* ((osize+1) /2);`
`822`	`823`
`823`	`824`	`if (c==a\|\|c==b)`
`824`	`825`	`{`
`@@ -907,7 +908,7 @@ mp_int_sqr(mp_int a, mp_int c)`
`907`	`908`	`CHECK(a!=NULL&&c!=NULL);`
`908`	`909`
`909`	`910`	`/* Get a temporary buffer big enough to hold the result */`
`910`		`-osize= (mp_size)2*MP_USED(a);`
	`911`	`+osize= (mp_size)4*((MP_USED(a)+1) /2);`
`911`	`912`
`912`	`913`	`if (a==c)`
`913`	`914`	`{`
`@@ -2605,8 +2606,8 @@ s_kmul(mp_digit da, mp_digit db, mp_digit *dc,`
`2605`	`2606`	`* Now we'll get t1 = a0b0 and t2 = a1b1, and subtract them out so`
`2606`	`2607`	`* that we're left with only the pieces we want: t3 = a1b0 + a0b1`
`2607`	`2608`	`*/`
`2608`		`-ZERO(t1,bot_size+1);`
`2609`		`-ZERO(t2,bot_size+1);`
	`2609`	`+ZERO(t1,buf_size);`
	`2610`	`+ZERO(t2,buf_size);`
`2610`	`2611`	`(void)s_kmul(da,db,t1,bot_size,bot_size);/* t1 = a0 * b0 */`
`2611`	`2612`	`(void)s_kmul(a_top,b_top,t2,at_size,bt_size);/* t2 = a1 * b1 */`
`2612`	`2613`
`@@ -2616,11 +2617,13 @@ s_kmul(mp_digit da, mp_digit db, mp_digit *dc,`
`2616`	`2617`
`2617`	`2618`	`/* Assemble the output value */`
`2618`	`2619`	`COPY(t1,dc,buf_size);`
`2619`		`-(void)s_uadd(t3,dc+bot_size,dc+bot_size,`
`2620`		`-buf_size+1,buf_size+1);`
	`2620`	`+carry=s_uadd(t3,dc+bot_size,dc+bot_size,`
	`2621`	`+buf_size+1,buf_size);`
	`2622`	`+assert(carry==0);`
`2621`	`2623`
`2622`		`-(void)s_uadd(t2,dc+2bot_size,dc+2bot_size,`
`2623`		`-buf_size,buf_size);`
	`2624`	`+carry=s_uadd(t2,dc+2bot_size,dc+2bot_size,`
	`2625`	`+buf_size,buf_size);`
	`2626`	`+assert(carry==0);`
`2624`	`2627`
`2625`	`2628`	`s_free(t1);/* note t2 and t3 are just internal pointers`
`2626`	`2629`	`* to t1 */`
`@@ -3307,7 +3310,10 @@ s_embar(mp_int a, mp_int b, mp_int m, mp_int mu, mp_int c)`
`3307`	`3310`	`dbt=db+MP_USED(b)-1;`
`3308`	`3311`
`3309`	`3312`	`while (last<3)`
`3310`		`-SETUP(mp_int_init_size(TEMP(last),2*umu),last);`
	`3313`	`+{`
	`3314`	`+SETUP(mp_int_init_size(TEMP(last),4*umu),last);`
	`3315`	`+ZERO(MP_DIGITS(TEMP(last-1)),MP_ALLOC(TEMP(last-1)));`
	`3316`	`+}`
`3311`	`3317`
`3312`	`3318`	`(void)mp_int_set_value(c,1);`
`3313`	`3319`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit0a3ee8a

File tree

1 file changed

1 file changed

`‎contrib/pgcrypto/imath.c‎`

0 commit comments