Timing vulnerability in ECDSA signature generation (CVE-2018-0735) (99540ec7) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Commit 99540ec7 authored Oct 26, 2018 by

Pauli

Timing vulnerability in ECDSA signature generation (CVE-2018-0735)



Preallocate an extra limb for some of the big numbers to avoid a reallocation
that can potentially provide a side channel.

Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/7486)

parent a9cfb8c2

Hide whitespace changes

Inline Side-by-side

admin_forge @etsi-cti-admin
mentioned in commit b1d6d55e
· Jun 19, 2019

mentioned in commit b1d6d55e

mentioned in commit b1d6d55ece1c26fa2829e2b819b038d7b6d692b4

Toggle commit list

Please register or to comment