projects / platform / upstream / nodejs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 84b55eb) | patch
Canonicalise input in CMS_verify
authorjaekuk, lee <juku1999@samsung.com>
Mon, 12 Jun 2017 04:27:11 +0000 (13:27 +0900)
committerjaekuk, lee <juku1999@samsung.com>
Mon, 12 Jun 2017 05:19:56 +0000 (14:19 +0900)
commitdb5f563afd0b8336e2db555d9700d0600d0152bd
tree16c2ba00a417bb401557caba27b76bf9c4f8677ctree | snapshot
parent84b55ebc5c26fc6321b657dafae04570bd6815cacommit | diff
Canonicalise input in CMS_verify

https://nvd.nist.gov/vuln/detail/CVE-2015-1792

https://github.com/openssl/openssl/commit/cd30f03ac5bf2962f44bd02ae8d88245dff2f12c
If content is detached and not binary mode translate the input to
CRLF format. Before this change the input was verified verbatim
which lead to a discrepancy between sign and verify.

Change-Id: I29926675aabdec32c5857adc5937d4525cd24747
Signed-off-by: jaekuk, lee <juku1999@samsung.com>
deps/openssl/openssl/crypto/cms/cms_smime.c [changed mode: 0644->0755] diff | blob | history
Domain: Web Framework / Common;