-
Committer:
Bazaar Package Importer
-
Author(s):
Kurt Roeckx
-
Date:
2009-01-05 21:10:03 UTC
-
mfrom:
(1.2.4 upstream)
-
Revision ID:
james.westby@ubuntu.com-20090105211003-mh6zc3um4k1uhsj7
Tags: 1:4.2.4p4+dfsg-8
It did not properly check the return value of EVP_VerifyFinal
which results in an malformed DSA signature being treated as
a good signature rather than as an error. (CVE-2009-0021)