NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit8d412e0

committed

Cherry-pick security-relevant fixes from upstream imath library.

This covers alterations to buffer sizing and zeroing made between imath1.3 and imath 1.20. Valgrind Memcheck identified the buffer overrunsand reliance on uninitialized data; their exploit potential is unknown.Builds specifying --with-openssl are unaffected, because they use theOpenSSL BIGNUM facility instead of imath. Back-patch to 9.0 (allsupported versions).Security:CVE-2015-0243

1 parent11f738a commit8d412e0Copy full SHA for 8d412e0

File tree

1 file changed

+15

-9

lines changed

contrib/pgcrypto
- imath.c

1 file changed

+15

-9

lines changed

`‎contrib/pgcrypto/imath.c`

Lines changed: 15 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -818,7 +818,8 @@ mp_int_mul(mp_int a, mp_int b, mp_int c)`
`818`	`818`	`*/`
`819`	`819`	`ua=MP_USED(a);`
`820`	`820`	`ub=MP_USED(b);`
`821`		`-osize=ua+ub;`
	`821`	`+osize=MAX(ua,ub);`
	`822`	`+osize=4* ((osize+1) /2);`
`822`	`823`
`823`	`824`	`if (c==a\|\|c==b)`
`824`	`825`	`{`
`@@ -907,7 +908,7 @@ mp_int_sqr(mp_int a, mp_int c)`
`907`	`908`	`CHECK(a!=NULL&&c!=NULL);`
`908`	`909`
`909`	`910`	`/* Get a temporary buffer big enough to hold the result */`
`910`		`-osize= (mp_size)2*MP_USED(a);`
	`911`	`+osize= (mp_size)4*((MP_USED(a)+1) /2);`
`911`	`912`
`912`	`913`	`if (a==c)`
`913`	`914`	`{`
`@@ -2605,8 +2606,8 @@ s_kmul(mp_digit da, mp_digit db, mp_digit *dc,`
`2605`	`2606`	`* Now we'll get t1 = a0b0 and t2 = a1b1, and subtract them out so`
`2606`	`2607`	`* that we're left with only the pieces we want: t3 = a1b0 + a0b1`
`2607`	`2608`	`*/`
`2608`		`-ZERO(t1,bot_size+1);`
`2609`		`-ZERO(t2,bot_size+1);`
	`2609`	`+ZERO(t1,buf_size);`
	`2610`	`+ZERO(t2,buf_size);`
`2610`	`2611`	`(void)s_kmul(da,db,t1,bot_size,bot_size);/* t1 = a0 * b0 */`
`2611`	`2612`	`(void)s_kmul(a_top,b_top,t2,at_size,bt_size);/* t2 = a1 * b1 */`
`2612`	`2613`
`@@ -2616,11 +2617,13 @@ s_kmul(mp_digit da, mp_digit db, mp_digit *dc,`
`2616`	`2617`
`2617`	`2618`	`/* Assemble the output value */`
`2618`	`2619`	`COPY(t1,dc,buf_size);`
`2619`		`-(void)s_uadd(t3,dc+bot_size,dc+bot_size,`
`2620`		`-buf_size+1,buf_size+1);`
	`2620`	`+carry=s_uadd(t3,dc+bot_size,dc+bot_size,`
	`2621`	`+buf_size+1,buf_size);`
	`2622`	`+assert(carry==0);`
`2621`	`2623`
`2622`		`-(void)s_uadd(t2,dc+2bot_size,dc+2bot_size,`
`2623`		`-buf_size,buf_size);`
	`2624`	`+carry=s_uadd(t2,dc+2bot_size,dc+2bot_size,`
	`2625`	`+buf_size,buf_size);`
	`2626`	`+assert(carry==0);`
`2624`	`2627`
`2625`	`2628`	`s_free(t1);/* note t2 and t3 are just internal pointers`
`2626`	`2629`	`* to t1 */`
`@@ -3307,7 +3310,10 @@ s_embar(mp_int a, mp_int b, mp_int m, mp_int mu, mp_int c)`
`3307`	`3310`	`dbt=db+MP_USED(b)-1;`
`3308`	`3311`
`3309`	`3312`	`while (last<3)`
`3310`		`-SETUP(mp_int_init_size(TEMP(last),2*umu),last);`
	`3313`	`+{`
	`3314`	`+SETUP(mp_int_init_size(TEMP(last),4*umu),last);`
	`3315`	`+ZERO(MP_DIGITS(TEMP(last-1)),MP_ALLOC(TEMP(last-1)));`
	`3316`	`+}`
`3311`	`3317`
`3312`	`3318`	`(void)mp_int_set_value(c,1);`
`3313`	`3319`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit8d412e0

File tree

1 file changed

1 file changed

`‎contrib/pgcrypto/imath.c`

0 commit comments