Home GnuPG

dsa,ecdsa: Fix use of nonce, use larger one.

Description

dsa,ecdsa: Fix use of nonce, use larger one.

* cipher/dsa-common.c (_gcry_dsa_modify_k): New.
* cipher/pubkey-internal.h (_gcry_dsa_modify_k): New.
* cipher/dsa.c (sign): Use _gcry_dsa_modify_k.
* cipher/ecc-ecdsa.c (_gcry_ecc_ecdsa_sign): Likewise.
* cipher/ecc-gost.c (_gcry_ecc_gost_sign): Likewise.

CVE-id: CVE-2019-13627

  • GnuPG-bug-id: T4626
  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Aug 8 2019, 10:42 AM
Parents
rCb9577f7c89b4: ecc: Add mitigation against timing attack.
Branches
Unknown
Tags
Unknown
Tasks
Restricted Maniphest Task