[OpenSSL-1.0.2] TNF local patch - CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64
Issue #147
resolved
TNF local patch audit
- crypto/bn/asm/x86_64-mont5.pl
original commit message:
http://mail-index.netbsd.org/source-changes/2018/04/18/msg094491.html
Comments (1)
-
reporter - Log in to comment
BUGFIX: Issue
- CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64#147cherry-picked from OpenSSL-1_0_2-stable branch: https://github.com/openssl/openssl/commit/38d600147331d36e74174ebbd4008b63188b321b
original commit message:
bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqrx8x_internal.
Credit to OSS-Fuzz for finding this.
CVE-2017-3736
Reviewed-by: Rich Salz rsalz@openssl.org
→ <<cset 3f7ccebe1bfb2a7621527fb9e3cd7c1d27e5c486>>