Skip to content
This repository was archived by the owner on Apr 22, 2023. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: nodejs/node-v0.x-archive
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: master
Choose a base ref
...
head repository: smbz/node
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: master
Choose a head ref
Checking mergeability… Don’t worry, you can still create the pull request.
  • 1 commit
  • 1 file changed
  • 1 contributor

Commits on Apr 4, 2013

  1. crypto: fix RSA signature validation 

    There existed a potential security hole whereby openssl reporting an
error would result in node reporting the signature to be valid.

The return value from EVP_VerifyFinal() can be 1 for valid, 0 for
invalid or -1 for error.  It should therefore be tested for == 1, not
just != 0.
    @smbz
    smbz authored and amr66 committed Apr 4, 2013
    Configuration menu
    Copy the full SHA
    89e2f84 View commit details
    Browse the repository at this point in the history
Loading