]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 0003d9d) | patch
crypto/elliptic: make IsOnCurve return false for invalid field elements
authorFilippo Valsorda <filippo@golang.org>
Wed, 2 Feb 2022 17:13:17 +0000 (09:13 -0800)
committerFilippo Valsorda <filippo@golang.org>
Thu, 3 Feb 2022 17:24:54 +0000 (17:24 +0000)
commit7f9494c277a471f6f47f4af3036285c0b1419816
tree30fe4d8c7342e0a33e335c6cbf8e4f9a797589a7tree
parent0003d9da093ce1cb19aebb074da4506fade35a66commit | diff
crypto/elliptic: make IsOnCurve return false for invalid field elements

Thanks to Guido Vranken for reporting this issue.

Fixes #50974
Fixes CVE-2022-23806

Change-Id: I0201c2c88f13dd82910985a495973f1683af9259
Reviewed-on: https://go-review.googlesource.com/c/go/+/382455
Run-TryBot: Filippo Valsorda <filippo@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Trust: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
Reviewed-by: Katie Hockman <katie@golang.org>
Trust: Katie Hockman <katie@golang.org>
src/crypto/elliptic/elliptic.go diff | blob | history
src/crypto/elliptic/elliptic_test.go diff | blob | history
src/crypto/elliptic/p224.go diff | blob | history
src/crypto/elliptic/p384.go diff | blob | history
src/crypto/elliptic/p521.go diff | blob | history
Go GOST TLS 1.3