Re: [openssl.org #2826] OpenSSL Buffer Overflow Vulnerability Notification
LOL! On Thu, May 31, 2012 at 7:41 PM, David Anthony via RT r...@openssl.org wrote: Hello all, There has been a new security vulnerability we have reported over at Bugtraq (http://seclists.org/bugtraq/2012/May/155) and we feel that it should also be reported to the OpenSSL dev team. If there are any questions regarding the issue, please feel free to give us (Myself and Vincent Buccigrossi) an email at this address to discuss further. Thank you, David Anthony Hello all, There has been a new security vulnerability we have reported over at Bugtraq (http://seclists.org/bugtraq/2012/May/155) and we feel that it should also be reported to the OpenSSL dev team. If there are any questions regarding the issue, please feel free to give us (Myself and Vincent Buccigrossi) an email at this address to discuss further. Thank you, David Anthony __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
[openssl.org #2827] Bug ? with cms option with large files
I'm using openssl.exe (last version 1.0.1) for encrypt some files with Windows Seven. My command line is : openssl cms -encrypt -in c:\sc224.pdf -out c:\sc224.pkcs7 -outform DER -aes-128-cbc c:\test.pem I haven't problem for small files but when i try this command line with a file of 400Ko there's no error reported but the result is a very small pkcs7 file. I've tried the -print option, the result file is good except in the encryptedContent section who is too small to ! Thanx a lot if you have some explanation for this issue... Frédéric VALLEE I'm using openssl.exe (last version 1.0.1) for encrypt some files with Windows Seven.My command line is : openssl cms -encrypt -in c:\sc224.pdf -out c:\sc224.pkcs7 -outform DER -aes-128-cbc c:\test.pemI haven't problem for small files but when i try this command line with a file of 400Ko there's no error reported but the result is a very small pkcs7 file.I've tried the -print option, the result file is good except in the encryptedContent section who is too smallto!Thanx a lot if you have some explanation for this issue...Fr?d?ric VALLEE
