Uploaded image for project: 'Santuario'
  1. Santuario
  2. SANTUARIO-496

DSA verification crashes OpenSSL on invalid combinations of key content

          Details

          • Type: Bug
          • Status: Closed
          • Priority: Major
          • Resolution: Fixed
          • Affects Version/s: C++ 2.0.0, C++ 2.0.1
          • Fix Version/s: C++ 2.0.2
          • Component/s: C++
          • Labels:
            None

            Description

            Particular KeyInfo combinations result in incomplete DSA key structures that OpenSSL can't handle without crashing.

              Attachments

                Activity

                  People

                  • Assignee:
                    scantor Scott Cantor
                    Reporter:
                    scantor Scott Cantor
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    0 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved: