Overview

File openssl-CVE-2015-1788.patch of Package compat-openssl098.31475

commit 22152d6885fac98777ae1d7626a78c20b1ab4295
Author: Dr. Stephen Henson <steve@openssl.org>
Date:   Wed Jun 22 15:23:20 2011 +0000

    PR: 2540
    Submitted by: emmanuel.azencot@bull.net
    Reviewed by: steve
    
    Prevent infinite loop in BN_GF2m_mod_inv().

diff --git a/crypto/bn/bn_gf2m.c b/crypto/bn/bn_gf2m.c
index ae642cc..5d90f1e 100644
--- a/crypto/bn/bn_gf2m.c
+++ b/crypto/bn/bn_gf2m.c
@@ -607,6 +607,7 @@ int BN_GF2m_mod_inv(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx)
 		{
 		while (!BN_is_odd(u))
 			{
+			if (BN_is_zero(u)) goto err;
 			if (!BN_rshift1(u, u)) goto err;
 			if (BN_is_odd(b))
 				{
openSUSE Build Service is sponsored by
Places