tnozaki / NetBSD / issues / #147 - [OpenSSL-1.0.2] TNF local patch - CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64 — Bitbucket

Issue #147 resolved

Takehiko NOZAKI repo owner created an issue 2019-07-09

TNF local patch audit

crypto/bn/asm/x86_64-mont5.pl

original commit message:

http://mail-index.netbsd.org/source-changes/2018/04/18/msg094491.html

patch-07

Comments (1)

Takehiko NOZAKI reporter
BUGFIX: Issue ~~#147~~ - CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64

cherry-picked from OpenSSL-1_0_2-stable branch: https://github.com/openssl/openssl/commit/38d600147331d36e74174ebbd4008b63188b321b

original commit message:

bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqrx8x_internal.

Credit to OSS-Fuzz for finding this.

CVE-2017-3736

Reviewed-by: Rich Salz rsalz@openssl.org

→ <<cset 3f7ccebe1bfb2a7621527fb9e3cd7c1d27e5c486>>
- 2019-07-23T14:42:19+00:00
Log in to comment

Assignee: Takehiko NOZAKI

Type: bug

Priority: major

Status: resolved

Votes: 0

Watchers: 1