Rewrote check to prevent read of uninitialized data in

rsa_rsassa_pss_verify()
2025-07-29 11:41:15 +03:00 · 2013-12-31 11:43:01 +01:00
parent 6992eb762c
commit 4de44aa0ae
1 changed files with 1 additions and 1 deletions
--- a/library/rsa.c
+++ b/library/rsa.c
@ -1161,7 +1161,7 @@ int rsa_rsassa_pss_verify( rsa_context *ctx,
    buf[0] &= 0xFF >> ( siglen * 8 - msb );
-    while( *p == 0 && p < buf + siglen )
+    while( p < buf + siglen && *p == 0 )
        p++;
    if( p == buf + siglen ||