Hi James,
Can you pull these patches please and pass them on to Linus? They include
the following:
(1) Fix mpi_powm()'s handling of a number with a zero exponent [CVE-2016-8650].
(2) Fix double free in X.509 error handling.
The patches can be found here also:
http://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git/log/?h=keys-fixes
Tagged thusly:
git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git
keys-fixes-20161124
David
---
Andrey Ryabinin (1):
X.509: Fix double free in x509_cert_parse()
David Howells (1):
MPI: Fix mpi_powm() when exponent is 0 and the result has no limbs
crypto/asymmetric_keys/x509_cert_parser.c | 1 -
lib/mpi/mpi-pow.c | 5 +++++
2 files changed, 5 insertions(+), 1 deletion(-)
