Commit b4e4bf29 authored Aug 28, 2024 by Viktor Dukhovni Committed by Tomas Mraz Aug 29, 2024

Check for excess data in CertificateVerify



As reported by Alicja Kario, we ignored excess bytes after the
signature payload in TLS CertificateVerify Messages.  These
should not be present.

Fixes: #25298

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25302)

parent 25f5d7b8

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 5b735418
· Aug 30, 2024

mentioned in commit 5b735418

mentioned in commit 5b7354184a95fc1fdd177a7f876ac0ac6105c79d

Toggle commit list
mirror @mirror
mentioned in commit 2afff322
· Aug 30, 2024

mentioned in commit 2afff322

mentioned in commit 2afff3222ee4b6b85575ef0e18e976087f261e47

Toggle commit list
mirror @mirror
mentioned in commit 19a54fe9
· Aug 30, 2024

mentioned in commit 19a54fe9

mentioned in commit 19a54fe98f600bb847b895c44ac42c89654c144d

Toggle commit list
mirror @mirror
mentioned in commit 7d90a42e
· Aug 30, 2024

mentioned in commit 7d90a42e

mentioned in commit 7d90a42eef47af7aac25abbf1769c1ef2e4babe3

Toggle commit list

Please register or to comment