- djm@cvs.openbsd.org 2010/09/20 04:50:53 [jpake.c schnorr.c] check that received values are smaller than the group size in the disabled and unfinished J-PAKE code. avoids catastrophic security failure found by Sebastien Martini

commit: f7540cd5c4047675d03b2426bb6c32d3ff811bf7 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Fri Sep 24 22:03:24 2010 +1000
committer: Damien Miller <djm@mindrot.org> Fri Sep 24 22:03:24 2010 +1000
tree: 6a1f00877c30f14cb8243dd965290c073489cd8c
parent: 857b02e37f3bd6d5390711521e2dd021beca3a3c [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index f9e0f6c..ddfd7b3 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -15,6 +15,11 @@
    - djm@cvs.openbsd.org 2010/09/20 04:41:47
      [ssh.c]
      install a SIGCHLD handler to reap expiried child process; ok markus@
+   - djm@cvs.openbsd.org 2010/09/20 04:50:53
+     [jpake.c schnorr.c]
+     check that received values are smaller than the group size in the
+     disabled and unfinished J-PAKE code.
+     avoids catastrophic security failure found by Sebastien Martini
 
 20100910
  - (dtucker) [openbsd-compat/port-linux.c] Check is_selinux_enabled for exact
commit	f7540cd5c4047675d03b2426bb6c32d3ff811bf7	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Fri Sep 24 22:03:24 2010 +1000
committer	Damien Miller <djm@mindrot.org>	Fri Sep 24 22:03:24 2010 +1000
tree	6a1f00877c30f14cb8243dd965290c073489cd8c
parent	857b02e37f3bd6d5390711521e2dd021beca3a3c [diff] [blame]