Diffusion libgcrypt 7c2943309d14

dsa,ecdsa: Fix use of nonce, use larger one.
7c2943309d14
Actions

Tags

None

Subscribers

None

Description

dsa,ecdsa: Fix use of nonce, use larger one.

* cipher/dsa-common.c (_gcry_dsa_modify_k): New.
* cipher/pubkey-internal.h (_gcry_dsa_modify_k): New.
* cipher/dsa.c (sign): Use _gcry_dsa_modify_k.
* cipher/ecc-ecdsa.c (_gcry_ecc_ecdsa_sign): Likewise.
* cipher/ecc-gost.c (_gcry_ecc_gost_sign): Likewise.

CVE-id: CVE-2019-13627

GnuPG-bug-id: T4626
Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance

Authored on Aug 8 2019, 10:42 AM

Parents

rCb9577f7c89b4: ecc: Add mitigation against timing attack.

Branches

Unknown

Tags

Unknown

Tasks

Restricted Maniphest Task

Event Timeline

• gniibe added a task: Restricted Maniphest Task.Aug 8 2019, 10:53 AM

• gniibe committed rC7c2943309d14: dsa,ecdsa: Fix use of nonce, use larger one. (authored by • gniibe).Aug 8 2019, 10:42 AM

• gniibe mentioned this in rCdb4e9976cc31: dsa,ecdsa: Fix use of nonce, use larger one..Aug 9 2019, 2:21 AM

Changes (5)

Path

Size

cipher/

pubkey-internal.h

rC7c2943309d14

cipher/dsa-common.c

Loading...

cipher/dsa.c

Loading...

cipher/ecc-ecdsa.c

Loading...

cipher/ecc-gost.c

Loading...

cipher/pubkey-internal.h

Loading...