add CVE-2010-0742 and CVS-2010-1633 fixes
[openssl.git] / crypto / rsa / rsa_pmeth.c
index ff65c07..60bf614 100644 (file)
@@ -251,6 +251,8 @@ static int pkey_rsa_verifyrecover(EVP_PKEY_CTX *ctx,
                        ret = int_rsa_verify(EVP_MD_type(rctx->md),
                                                NULL, 0, rout, &sltmp,
                                        sig, siglen, ctx->pkey->pkey.rsa);
+                       if (ret <= 0)
+                               return 0;
                        ret = sltmp;
                        }
                else