diff options
| author | jp161948 <none@none> | 2006-10-05 10:49:36 -0700 |
|---|---|---|
| committer | jp161948 <none@none> | 2006-10-05 10:49:36 -0700 |
| commit | 00de47050febf166a83576bc8c4a685ea11fa457 (patch) | |
| tree | 9afa9e9baa276eebf05c883a38ac2f2ee45d2073 /usr/src/common/openssl/crypto/dh/dh_key.c | |
| parent | b760ebbf2958f42920969bccd6ccab1b129076a8 (diff) | |
| download | illumos-joyent-00de47050febf166a83576bc8c4a685ea11fa457.tar.gz | |
6476279 multiple vulnerabilities in OpenSSL (CVE-2006-2937, CVE-2006-2940)
6476772 update OpenSSL version string with information about security patches included
Diffstat (limited to 'usr/src/common/openssl/crypto/dh/dh_key.c')
| -rw-r--r-- | usr/src/common/openssl/crypto/dh/dh_key.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/usr/src/common/openssl/crypto/dh/dh_key.c b/usr/src/common/openssl/crypto/dh/dh_key.c index cc17c8851b..994546e044 100644 --- a/usr/src/common/openssl/crypto/dh/dh_key.c +++ b/usr/src/common/openssl/crypto/dh/dh_key.c @@ -179,6 +179,12 @@ static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) int ret= -1; int check_result; + if (BN_num_bits(dh->p) > OPENSSL_DH_MAX_MODULUS_BITS) + { + DHerr(DH_F_COMPUTE_KEY,DH_R_MODULUS_TOO_LARGE); + goto err; + } + ctx = BN_CTX_new(); if (ctx == NULL) goto err; BN_CTX_start(ctx); |