[openssl/openssl] 22e08c: Fix coverity-1604666

Neil Horman Wed, 17 Jul 2024 07:33:12 -0700

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 22e08c7cdc596d4f16749811d1022fb8b07a8e41
      
https://github.com/openssl/openssl/commit/22e08c7cdc596d4f16749811d1022fb8b07a8e41
  Author: Neil Horman <nhor...@openssl.org>
  Date:   2024-07-17 (Wed, 17 Jul 2024)


  Changed paths:
    M crypto/rsa/rsa_oaep.c

  Log Message:
  -----------
  Fix coverity-1604666

Coverity recently flaged an error in which the return value for
EVP_MD_get_size wasn't checked for negative values prior to use, which
can cause underflow later in the function.

Just add the check and error out if get_size returns an error.

Reviewed-by: Paul Dale <ppz...@gmail.com>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24896)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 22e08c: Fix coverity-1604666

Reply via email to