Fix missing bound check

commit: 258bab0b1b31f0da623a74f7fa6f4fe9468cbd34 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Nov 25 17:41:50 2014 +0100
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Nov 27 09:27:21 2014 +0100
tree: 679c9f461fbad99e11f232a13bb777575dc8ea3d
parent: aa02dc1ed80ad3f48f40fcf17e15b243fdba51ce [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 7bb1727..7845080 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -18,6 +18,8 @@
 Bugfix
    * Fix potential undefined behaviour in Camellia.
    * Fix memory leaks in PKCS#5 and PKCS#12.
+   * Stack buffer overflow if ctr_drbg_update() is called with too large
+     add_len (found by Jean-Philippe Aumasson) (not triggerable remotely).
 
 Changes
    * Blind RSA private operations even when POLARSSL_RSA_NO_CRT is defined.
commit	258bab0b1b31f0da623a74f7fa6f4fe9468cbd34	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Nov 25 17:41:50 2014 +0100
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Thu Nov 27 09:27:21 2014 +0100
tree	679c9f461fbad99e11f232a13bb777575dc8ea3d
parent	aa02dc1ed80ad3f48f40fcf17e15b243fdba51ce [diff] [blame]