RSA: Fix another buffer overflow in PSS signature verification Fix buffer overflow in RSA-PSS signature verification when the masking operation results in an all-zero buffer. This could happen at any key size.

commit: d0cd855145bd6f582947114b47f12502ba3ef4d8 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Oct 17 19:02:13 2017 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Oct 17 19:19:55 2017 +0200
tree: 926137d4911bb37142e62dc8422093aa697a5d7e
parent: 5c3247120fea5c83f494fde79657a19e07eac46d [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 24835cd..51c002c 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -6,6 +6,8 @@
    * Fix buffer overflow in RSA-PSS verification when the hash is too
      large for the key size. Found by Seth Terashima, Qualcomm Product
      Security Initiative, Qualcomm Technologies Inc.
+   * Fix buffer overflow in RSA-PSS verification when the unmasked
+     data is all zeros.
 
 Bugfix
    * Fix ssl_parse_record_header() to silently discard invalid DTLS records
commit	d0cd855145bd6f582947114b47f12502ba3ef4d8	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Oct 17 19:02:13 2017 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Oct 17 19:19:55 2017 +0200
tree	926137d4911bb37142e62dc8422093aa697a5d7e
parent	5c3247120fea5c83f494fde79657a19e07eac46d [diff] [blame]