[jdk8u] Integrated: 8285591: [11] add signum checks in DSA.java engineVerify

[Andrew John Hughes]

On Mon, 30 May 2022 16:22:14 GMT, Andrew John Hughes <andrew at openjdk.org> wrote:

> This change was part of a security fix, JDK-8277233, for 17u during the April update.  The rest of 8277233 did not apply to older releases, as it concerned code added to ` src/jdk.crypto.ec/share/classes/sun/security/ec/ECDSAOperations.java` by JDK-8237218 in 15u.
> 
> However, the additional checks in `src/java.base/share/classes/sun/security/provider/DSA.java` that were included in the patch are applicable to older releases.
> 
> I'm raising this for inclusion in 8u342 during rampdown as 17u already has it since the April update and 11u now has this backport. It would be good for 8u to be consistent as soon as possible.

This pull request has now been integrated.

Changeset: a18e9043
Author:    Andrew John Hughes <andrew at openjdk.org>
URL:       https://git.openjdk.java.net/jdk8u/commit/a18e9043fa2a0a14098e1ec25d32577aaac6c023
Stats:     3 lines in 1 file changed: 1 ins; 0 del; 2 mod

8285591: [11] add signum checks in DSA.java engineVerify

Reviewed-by: sgehwolf, mbalao
Backport-of: bf3438c5dc993b96d089cabb5318bfc64a6904a3

-------------

PR: https://git.openjdk.java.net/jdk8u/pull/11