Accueil Explorer Aide
S'inscrire Connexion
Apq
/
winscp
miroir de https://github.com/winscp/winscp.git
1
0
Fork 0
Fichiers Tickets 0 Wiki
Parcourir la source

Bug 1729: Security fixes from PuTTY 0.71 - vuln-rng-reuse

https://winscp.net/tracker/1729
https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-rng-reuse.html
(cherry picked from commit 8b0202f6b2de1de15bb237b9aa549188a11cb4ae)

Source commit: 981dc96f691b07edf469a2b690b594c621ba8b3a
Martin Prikryl il y a 6 ans
Parent
4599422a70
commit
c4f4ac95dc
1 fichiers modifiés avec 2 ajouts et 0 suppressions
Vue séparée Afficher les stats Diff
  1. 2 0
      source/putty/sshrand.c

+ 2 - 0
source/putty/sshrand.c
Voir le fichier 

@@ -240,6 +240,8 @@ void random_add_noise(void *noise, int length)
 
 	length -= HASHINPUT - pool.incomingpos;

 	SHATransform((word32 *) pool.incoming, (word32 *) pool.incomingb);

 	for (i = 0; i < HASHSIZE; i++) {

+	    if (pool.poolpos >= POOLSIZE)

+		pool.poolpos = 0;

 	    pool.pool[pool.poolpos++] ^= pool.incoming[i];

 	    if (pool.poolpos >= POOLSIZE)

 		pool.poolpos = 0;