Skip to content
Commit b1d6d55e authored by Pauli's avatar Pauli
Browse files

Timing vulnerability in ECDSA signature generation (CVE-2018-0735)



Preallocate an extra limb for some of the big numbers to avoid a reallocation
that can potentially provide a side channel.

Reviewed-by: default avatarBernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/7486)

(cherry picked from commit 99540ec7)
parent 8abfe72e
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment