Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: e91579db0972bc8fe89e1060369c58f3dcfaafe7
https://github.com/openssl/openssl/commit/e91579db0972bc8fe89e1060369c58f3dcfaafe7
Author: Tomas Mraz <to...@openssl.org>
Date: 2024-05-16 (Thu, 16 May 2024)
Changed paths:
M CHANGES.md
Log Message:
-----------
Sync up CHANGES.md with 3.3 branch
Reviewed-by: Paul Dale <ppz...@gmail.com>
Reviewed-by: Matt Caswell <m...@openssl.org>
Reviewed-by: Neil Horman <nhor...@openssl.org>
Reviewed-by: Shane Lontis <shane.lon...@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/24346)
Commit: 85ccbab216da245cf9a6503dd327072f21950d9b
https://github.com/openssl/openssl/commit/85ccbab216da245cf9a6503dd327072f21950d9b
Author: Tomas Mraz <to...@openssl.org>
Date: 2024-05-16 (Thu, 16 May 2024)
Changed paths:
M CHANGES.md
M crypto/dsa/dsa_check.c
A test/recipes/15-test_dsaparam_data/invalid/p10240_q256_too_big.pem
Log Message:
-----------
Check DSA parameters for excessive sizes before validating
This avoids overly long computation of various validation
checks.
Fixes CVE-2024-4603
Reviewed-by: Paul Dale <ppz...@gmail.com>
Reviewed-by: Matt Caswell <m...@openssl.org>
Reviewed-by: Neil Horman <nhor...@openssl.org>
Reviewed-by: Shane Lontis <shane.lon...@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/24346)
Compare: https://github.com/openssl/openssl/compare/a6afe2b29a7b...85ccbab216da
To unsubscribe from these emails, change your notification settings at
https://github.com/openssl/openssl/settings/notifications
