mirror of
https://git.postgresql.org/git/postgresql.git
synced 2024-09-07 05:39:20 +02:00
85270ac7a2
This has been the predominant outcome. When the output of decrypting with a wrong key coincidentally resembled an OpenPGP packet header, pgcrypto could instead report "Corrupt data", "Not text data" or "Unsupported compression algorithm". The distinct "Corrupt data" message added no value. The latter two error messages misled when the decrypted payload also exhibited fundamental integrity problems. Worse, error message variance in other systems has enabled cryptologic attacks; see RFC 4880 section "14. Security Considerations". Whether these pgcrypto behaviors are likewise exploitable is unknown. In passing, document that pgcrypto does not resist side-channel attacks. Back-patch to 9.0 (all supported versions). Security: CVE-2015-3167 |
||
|---|---|---|
| .. | ||
| 3des.sql | ||
| blowfish.sql | ||
| cast5.sql | ||
| crypt-blowfish.sql | ||
| crypt-des.sql | ||
| crypt-md5.sql | ||
| crypt-xdes.sql | ||
| des.sql | ||
| hmac-md5.sql | ||
| hmac-sha1.sql | ||
| init.sql | ||
| md5.sql | ||
| pgp-armor.sql | ||
| pgp-compression.sql | ||
| pgp-decrypt.sql | ||
| pgp-encrypt-DISABLED.sql | ||
| pgp-encrypt.sql | ||
| pgp-info.sql | ||
| pgp-pubkey-decrypt.sql | ||
| pgp-pubkey-DISABLED.sql | ||
| pgp-pubkey-encrypt.sql | ||
| pgp-zlib-DISABLED.sql | ||
| rijndael.sql | ||
| sha1.sql | ||
| sha2.sql | ||