Skip to content
This repository was archived by the owner on Aug 24, 2025. It is now read-only.

Commit bcbde69

Browse files
mattcaswellmattcaswell
committed
Update CHANGES and NEWS for the new release
Reviewed-by: Richard Levitte <levitte@openssl.org>
1 parent 56d5a4b commit bcbde69

File tree

2 files changed

+30
-0
lines changed

2 files changed

+30
-0
lines changed

CHANGES

Lines changed: 27 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,33 @@
99

1010
Changes between 1.1.0g and 1.1.0h [xx XXX xxxx]
1111

12+
*) Constructed ASN.1 types with a recursive definition could exceed the stack
13+
14+
Constructed ASN.1 types with a recursive definition (such as can be found
15+
in PKCS7) could eventually exceed the stack given malicious input with
16+
excessive recursion. This could result in a Denial Of Service attack. There
17+
are no such structures used within SSL/TLS that come from untrusted sources
18+
so this is considered safe.
19+
20+
This issue was reported to OpenSSL on 4th January 2018 by the OSS-fuzz
21+
project.
22+
(CVE-2018-0739)
23+
[Matt Caswell]
24+
25+
*) Incorrect CRYPTO_memcmp on HP-UX PA-RISC
26+
27+
Because of an implementation bug the PA-RISC CRYPTO_memcmp function is
28+
effectively reduced to only comparing the least significant bit of each
29+
byte. This allows an attacker to forge messages that would be considered as
30+
authenticated in an amount of tries lower than that guaranteed by the
31+
security claims of the scheme. The module can only be compiled by the
32+
HP-UX assembler, so that only HP-UX PA-RISC targets are affected.
33+
34+
This issue was reported to OpenSSL on 2nd March 2018 by Peter Waltenberg
35+
(IBM).
36+
(CVE-2018-0733)
37+
[Andy Polyakov]
38+
1239
*) Add a build target 'build_all_generated', to build all generated files
1340
and only that. This can be used to prepare everything that requires
1441
things like perl for a system that lacks perl and then move everything

NEWS

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,9 @@
77

88
Major changes between OpenSSL 1.1.0g and OpenSSL 1.1.0h [under development]
99

10+
o Constructed ASN.1 types with a recursive definition could exceed the
11+
stack (CVE-2018-0739)
12+
o Incorrect CRYPTO_memcmp on HP-UX PA-RISC (CVE-2018-0733)
1013
o rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
1114

1215
Major changes between OpenSSL 1.1.0f and OpenSSL 1.1.0g [2 Nov 2017]

0 commit comments

Comments
 (0)