xref: /AliOS-Things-master/components/mbedtls/ChangeLog

50      This could lead to a buffer overflow, but only in case ticket authentication
626      overflow. #1179
632    * Fix a possible arithmetic overflow in ssl_parse_server_key_exchange()
634    * Fix a possible arithmetic overflow in ssl_parse_server_psk_hint() that
638    * Fix a 1-byte heap buffer overflow (read-only) during private key parsing.
661    * Fix a buffer overflow in RSA-PSS verification when the hash was too large
665    * Fix buffer overflow in RSA-PSS verification when the unmasked data is all
669    * Fix a potential heap buffer overflow in mbedtls_ssl_write(). When the (by
902    * Fix a potential integer overflow in the version verification for DER
903      encoded X.509 CRLs. The overflow could enable maliciously constructed CRLs
906    * Fix potential integer overflow in the version verification for DER
907      encoded X.509 CSRs. The overflow could enable maliciously constructed CSRs
910    * Fix a potential integer overflow in the version verification for DER
911      encoded X.509 certificates. The overflow could enable maliciously
970    * Fix a numerical underflow leading to stack overflow in mpi_read_file()
1062    * Fixed potential arithmetic overflow in mbedtls_ctr_drbg_reseed() that could
1066    * Fixed potential arithmetic overflow in mbedtls_md2_update() that could
1068    * Fixed potential arithmetic overflow in mbedtls_base64_decode() that could
1081    * Fix 1 byte buffer overflow in mbedtls_mpi_write_string() when the MPI
1180    * Fix potential integer overflow to buffer overflow in
1258    * Fix potential buffer overflow in some asn1_write_xxx() functions.
1301      overflow of the hostname or session ticket. Found by Guido Vranken,
1307    * Fix stack buffer overflow in pkcs12 decryption (used by
1310    * Fix potential buffer overflow in mbedtls_mpi_read_string().
1319    * Fix possible heap buffer overflow in base64_encoded() when the input
1325    * Fix potential heap buffer overflow in servers that perform client
1706    * Fix potential stack overflow while parsing crafted X.509 certificates
1733    * Stack buffer overflow if ctr_drbg_update() is called with too large
1735    * Possible buffer overflow of length at most POLARSSL_MEMORY_ALIGN_MULTIPLE
2002    * Fixed possible buffer overflow with overlong PSK
2084    * Fixed potential overflow in certificate size verification in
2229    * Fix potential stack overflow while parsing crafted X.509 certificates
2238    * Stack buffer overflow if ctr_drbg_update() is called with too large
2320    * Fixed potential overflow in certificate size verification in
2375    * Fixed potential heap buffer overflow on large hostname setting
2582    * Potential buffer-overflow for ssl_read_record() (independently found by
2585    * Potential heap buffer overflow on large hostname setting
3009    * Fixed dangerous bug that can cause a heap overflow in

Last Index update Sun Aug 20 00:18:20 CST 2023