simon-svn: putty: ben
Commits to Tartarus CVS repository.
tartarus-commits at lists.tartarus.org
Wed Nov 26 12:49:25 GMT 2008
SVN root: svn://svn.tartarus.org/sgt
Changes by: ben
Revision: 8334
Date: 2008-11-26 12:49:25 +0000 (Wed, 26 Nov 2008)
Log message (7 lines):
Mitigation for VU#958563: When using a CBC-mode server-to-client cipher
under SSH-2, don't risk looking at the length field of an incoming packet
until we've successfully MAC'ed the packet.
This requires a change to the MAC mechanics so that we can calculate MACs
incrementally, and output a MAC for the packet so far while still being
able to add more data to the packet later.
Modified files:
U putty/ssh.c
U putty/ssh.h
U putty/sshmd5.c
U putty/sshsha.c
Links:
http://svn.tartarus.org/sgt/?rev=8334&view=rev
http://svn.tartarus.org/sgt/putty/ssh.c?rev=8334&r1=8333&r2=8334
http://svn.tartarus.org/sgt/putty/ssh.h?rev=8334&r1=8333&r2=8334
http://svn.tartarus.org/sgt/putty/sshmd5.c?rev=8334&r1=8333&r2=8334
http://svn.tartarus.org/sgt/putty/sshsha.c?rev=8334&r1=8333&r2=8334
More information about the tartarus-commits
mailing list