Fix potential overflow in base64_encode

commit: 0aa45c209a9a2c4409fe4b32a0a3bf50f00dce71 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Wed Sep 30 16:30:28 2015 +0200
committer: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Wed Sep 30 16:37:49 2015 +0200
tree: 9c4a6e831bfbdd11ba0f1b070ce8ecf8eb2d3e47
parent: 50a739f8c36efc93d52f162c852a47efc44b3d25 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index c9e48e2..187c1ee 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -3,6 +3,13 @@
 = mbed TLS 2.1.1 released 2015-09-17
 
 Security
+   * Fix possible heap buffer overflow in base64_encoded() when the input
+     buffer is 512MB or larger on 32-bit platforms.
+     Found by Guido Vranken. Not trigerrable remotely in TLS.
+
+= mbed TLS 2.1.1 released 2015-09-17
+
+Security
    * Add countermeasure against Lenstra's RSA-CRT attack for PKCS#1 v1.5
      signatures. (Found by Florian Weimer, Red Hat.)
      https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/
commit	0aa45c209a9a2c4409fe4b32a0a3bf50f00dce71	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Wed Sep 30 16:30:28 2015 +0200
committer	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Wed Sep 30 16:37:49 2015 +0200
tree	9c4a6e831bfbdd11ba0f1b070ce8ecf8eb2d3e47
parent	50a739f8c36efc93d52f162c852a47efc44b3d25 [diff] [blame]