The Blue Coat Systems cryptography team is reviewing our usage of OpenSSL and
has discovered the following minor bug. We do not believe that this bug is
exploitable.
In branch master, file evp_pbe.c, observe the function EVP_Cipher_init. At line
175, we see the following:
if (cipher_nid ==
The Blue Coat Systems cryptography team is reviewing our usage of OpenSSL and
has discovered the following minor bug. We do not believe that this bug is
exploitable.
In branch OpenSSL-fips-2_0-stable, file fips_rsa_sign.c observe the function
FIPS_rsa_verify_digest. At line 353 the code looks l
The Blue Coat Systems cryptography team is reviewing our usage of OpenSSL and
has discovered the following minor bug. We do not believe that this bug is
exploitable.
In branch OpenSSL-fips-2_0-stable, file rsa_x931g.c observe the function
RSA_X931_derive_ex. At line 84 we see the following:
The cryptographic engineering team at Blue Coat systems is conducting a review
of OpenSSL and have found the following minor bug. We would appreciate your
consideration.
Observe the following lines in evp_enc.c:
if (in->cipher_data && in->cipher->ctx_size) {
out->cipher_data = OPENS
