Skip to content
Snippets Groups Projects
Select Git revision
  • ytdlp default
  • decent-sanfn
  • 2022hkt-mastodon-agelimit
  • downloader-confusing-key
  • youtube-plml
  • metapulator
  • ts-pts
  • aria2c-progress
  • tver-132
  • force-extractor
  • iaup
  • haruhidl-selfhosted
  • abematv
  • hakutober
  • rpc
  • youtube-live-dl-from-start
  • misskey
  • old
  • streamlink
  • niconico-dmc-singlefmt
  • 2024.05.12.1715481609
  • 2024.05.05.1714876701
  • 2024.04.28.1714272009
  • 2024.04.21.1713666901
  • 2024.04.14.1713065417
  • 2024.04.07.1712457406
  • 2024.03.31.1711852691
  • 2024.03.24.1711248033
  • 2024.03.17.1710642758
  • 2024.03.10.1710038114
  • 2024.03.03.1709433455
  • 2024.02.25.1708828468
  • 2024.02.18.1708223862
  • 2024.02.11.1707618786
  • 2024.02.04.1707013912
  • 2024.01.28.1706408584
  • 2024.01.21.1705804978
  • 2024.01.14.1705200515
  • 2024.01.07.1704595415
  • 2023.12.31.1703990171
40 results
Blame Permalink
  • Filippo Valsorda's avatar
    4d318be1
    [update] fix (unexploitable) BB'06 vulnerability in rsa_verify · 4d318be1
    Filippo Valsorda authored 
    The rsa_verify code was vulnerable to a BB'06 attack, allowing to forge
signatures for arbitrary messages if and only if the public key exponent is
3.  Since the updates key is hardcoded to 65537, there is no risk for
youtube-dl, but I don't want vulnerable code in the wild.

The new function adopts a way safer approach of encoding-and-comparing to
replace the dangerous parsing code.
    4d318be1
    History
    [update] fix (unexploitable) BB'06 vulnerability in rsa_verify
    Filippo Valsorda authored 
    The rsa_verify code was vulnerable to a BB'06 attack, allowing to forge
signatures for arbitrary messages if and only if the public key exponent is
3.  Since the updates key is hardcoded to 65537, there is no risk for
youtube-dl, but I don't want vulnerable code in the wild.

The new function adopts a way safer approach of encoding-and-comparing to
replace the dangerous parsing code.