diff options
author | Simon Josefsson <simon@josefsson.org> | 2006-09-08 13:43:50 +0000 |
---|---|---|
committer | Simon Josefsson <simon@josefsson.org> | 2006-09-08 13:43:50 +0000 |
commit | ac68d9e20c65d748655f527a81d5cf3a63823c14 (patch) | |
tree | 75d8020571dd278d6a5e179beef695cbbb3ddd97 | |
parent | c5c36a61fc8e0c2764a6818788344a9d79fdcad4 (diff) | |
download | gnutls-ac68d9e20c65d748655f527a81d5cf3a63823c14.tar.gz |
Add.
-rw-r--r-- | NEWS | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -5,6 +5,12 @@ See the end for copying conditions. * Version 1.5.1 (unreleased) +** Fix PKCS#1 verification to avoid a variant of Bleichenbacher's +** Crypto 06 rump session attack. +In particular, we check that the digestAlgorithm.parameters field is +empty, to avoid that it can contain "garbage" that may be used to +alter the numeric properties of the signature. + ** Fix PKCS#1 decryption to avoid Bleichenbacher's Crypto 98 attack. See <http://www.bell-labs.com/user/bleichen/papers/pkcs.ps.gz>. |