RSA PSS: remove redundant check; changelog

Remove a check introduced in the previous buffer overflow fix with keys of size 8N+1 which the subsequent fix for buffer start calculations made redundant. Added a changelog entry for the buffer start calculation fix.
2026-04-06 20:46:32 +02:00 · 2017-10-19 17:46:14 +02:00
parent 31a2d14b92
commit 9745cfd87d
2 changed files with 3 additions and 2 deletions
--- a/2
+++ b/2
@@ -10,6 +10,8 @@ Security
     data is all zeros.

 Bugfix
+   * Fix some invalid RSA-PSS signatures with keys of size 8N+1 that were
+     accepted. Generating these signatures required the private key.
   * Fix ssl_parse_record_header() to silently discard invalid DTLS records
     as recommended in RFC 6347 Section 4.1.2.7.