Ivan D Nestlerode via RT wrote:
I sent this to openssl-dev previously, but I think it got lost in
the noise there (since it didn't go through rt).
In OpenSSL 0.9.6h, there are a couple of BN_init() bugs in
crypto/dsa/dsa_ossl.c. The BN_init() calls in question are in the functions:
Ivan D Nestlerode via RT wrote:
I sent this to openssl-dev previously, but I think it got lost in
the noise there (since it didn't go through rt).
In OpenSSL 0.9.6h, there are a couple of BN_init() bugs in
crypto/dsa/dsa_ossl.c. The BN_init() calls in question are in the functions:
[[EMAIL PROTECTED] - Wed Jan 15 12:12:43 2003]:
Ivan D Nestlerode via RT wrote:
In OpenSSL 0.9.6h, there are a couple of BN_init() bugs in
crypto/dsa/dsa_ossl.c. The BN_init() calls in question are in the
functions:
...
The same bug is in the ecdsa code in 0.9.8-dev (see
I sent this to openssl-dev previously, but I think it got lost in
the noise there (since it didn't go through rt).
In OpenSSL 0.9.6h, there are a couple of BN_init() bugs in
crypto/dsa/dsa_ossl.c. The BN_init() calls in question are in the functions:
dsa_do_sign()(lines 113-114)