when block padding is used, byte value 0 can never
be the final byte of the padded plain text, the only
valid range is [1 .. block_size].
The check for 0 is not performed when detecting
malformed padding in EVP_DecryptFinal_ex.
I've attached the one-line patch for this.
regards
Sreeram
diff -ur
[ I resend this message in case someone else at the openssl-dev
list is interested in my reply. The message was originally
blocked by SpamCop at openssl.org mail server. I hope my mail
relay is off the SpamCop list by now. ]
via RT [EMAIL PROTECTED] writes:
However, it would be great to