Fix boolean return value if an empty RSA signature is detected in gmp plugin

Fixes CVE-2012-2388.
2012-05-07 13:51:46 +02:00 · 2012-05-07 13:51:46 +02:00 · 060b508e0e
parent 77e4282643
commit 060b508e0e
1 changed files with 1 additions and 1 deletions
--- a/src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c
+++ b/src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c
@ -137,7 +137,7 @@ static bool verify_emsa_pkcs1_signature(private_gmp_rsa_public_key_t *this,

 	if (signature.len == 0 || signature.len > this->k)
 	{
-		return INVALID_ARG;
+		return FALSE;
 	}

 	/* unpack signature */