Bug#701817: unblock: botan1.10/1.10.5-1

Ondřej Surý Mon, 04 Mar 2013 00:57:15 -0800

Package: release.debian.org
Followup-For: Bug #701817
User: release.debian....@packages.debian.org
Usertags: unblock


And the patches...

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

#
#
# patch "src/pubkey/dh/dh.cpp"
#  from [87394105b44ac22e9f8727335586b5ae9c95acbb]
#    to [fd216f648a465f32e2626653acd54b4a36e27d97]
#
============================================================
--- src/pubkey/dh/dh.cpp	87394105b44ac22e9f8727335586b5ae9c95acbb
+++ src/pubkey/dh/dh.cpp	fd216f648a465f32e2626653acd54b4a36e27d97
@@ -87,6 +87,9 @@ SecureVector<byte> DH_KA_Operation::agre
    {
    BigInt input = BigInt::decode(w, w_len);
 
+   if(input <= 1 || input >= p - 1)
+      throw Invalid_Argument("DH agreement - invalid key provided");
+
    BigInt r = blinder.unblind(powermod_x_p(blinder.blind(input)));
 
    return BigInt::encode_1363(r, p.bytes());

Bug#701817: unblock: botan1.10/1.10.5-1

Reply via email to