cfad1812508dd8e1baf9c99514c89bda5ab1cd10 - mirror/mbed-tls.git

commit	cfad1812508dd8e1baf9c99514c89bda5ab1cd10	[log] [tgz]
author	Andres Amaya Garcia <Andres.AmayaGarcia@arm.com>	Wed Jan 18 13:56:58 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Mon Feb 20 22:00:33 2017 +0000
tree	30c4e95c4c8ff0409c54c1e0a8dbbf4f6c838410
parent	29b43737ba22ce86934cc5f63107b14cd0eb8f79 [diff]

Fix integer overflows in buffer bound checks

Fix potential integer overflows in the following functions:
  * mbedtls_md2_update() to be bypassed and cause
  * mbedtls_cipher_update()
  * mbedtls_ctr_drbg_reseed()
This overflows would mainly be exploitable in 32-bit systems and could
cause buffer bound checks to be bypassed.

ChangeLog[diff]
library/cipher.c[diff]
library/ctr_drbg.c[diff]
library/md2.c[diff]

4 files changed

tree: 30c4e95c4c8ff0409c54c1e0a8dbbf4f6c838410

configs/
doxygen/
include/
library/
programs/
scripts/
tests/
visualc/
.gitignore
.travis.yml
ChangeLog
CMakeLists.txt
DartConfiguration.tcl
LICENSE
Makefile
README.rst