miniblink49 icon indicating copy to clipboard operation
miniblink49 copied to clipboard
verified publisher icon weolar

Fix: Potential Vulnerability in Cloned Function

Open tabudz opened this issue 10 months ago • 0 comments

Description This PR fixes a security vulnerability in BN_mod_sqrt() that was cloned from openssl but did not receive the security patch. The original issue was reported and fixed under https://github.com/openssl/openssl/commit/3118eb64934499d93db3230748a452351d1d9a65. This PR applies the same patch to eliminate the vulnerability.

References https://nvd.nist.gov/vuln/detail/CVE-2022-0778 https://github.com/openssl/openssl/commit/3118eb64934499d93db3230748a452351d1d9a65

tabudz avatar Mar 03 '25 14:03 tabudz