projects / platform / upstream / nodejs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cf95794) | patch
Canonicalise input in CMS_verify 87/133387/4
authorjaekuk, lee <juku1999@samsung.com>
Mon, 12 Jun 2017 04:27:11 +0000 (13:27 +0900)
committerjaekuk lee <juku1999@samsung.com>
Mon, 12 Jun 2017 04:28:36 +0000 (04:28 +0000)
commit5bc6157199a468e810d41d06321cca27a6c973ab
tree16c2ba00a417bb401557caba27b76bf9c4f8677ctree | snapshot
parentcf957945d2e80ce721769c636a26d2cf5b683f36commit | diff
Canonicalise input in CMS_verify

https://nvd.nist.gov/vuln/detail/CVE-2015-1792

https://github.com/openssl/openssl/commit/cd30f03ac5bf2962f44bd02ae8d88245dff2f12c
If content is detached and not binary mode translate the input to
CRLF format. Before this change the input was verified verbatim
which lead to a discrepancy between sign and verify.

Change-Id: I29926675aabdec32c5857adc5937d4525cd24747
Signed-off-by: jaekuk, lee <juku1999@samsung.com>
deps/openssl/openssl/crypto/cms/cms_smime.c [changed mode: 0644->0755] diff | blob | history
Domain: Web Framework / Common;