Forum: >>> Magnum BBS <<<

libcrypto patch available for DSA security issue

From Bob Beck@21:1/5 to All on Mon Jun 6 19:05:01 2016

Fixes are available to correct a problem that prevents the DSA signing algorithm from running in constant time even if the flag
BN_FLG_CONSTTIME is set.

This issue was reported by Cesar Pereida (Aalto University), Billy
Brumley (Tampere University of Technology), and Yuval Yarom (The
University of Adelaide and NICTA). The fix was developed by Cesar
Pereida.

Patches are available for 5.8 and 5.9 at:

http://ftp.openbsd.org/pub/OpenBSD/patches/5.8/common/017_crypto.patch.sig http://ftp.openbsd.org/pub/OpenBSD/patches/5.8/common/011_crypto.patch.sig

and have been commmitted to -current.

Portably LibreSSL releases will appear shortly.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	291
Nodes:	16 (3 / 13)
Uptime:	156:25:47
Calls:	6,613
Calls today:	3
Files:	12,162
Messages:	5,311,930