Fix integer overflow in mbedtls_base64_decode() Fix potential integer overflows in the function mbedtls_base64_decode(). This overflow would mainly be exploitable in 32-bit systems and could cause buffer bound checks to be bypassed.

commit: d00d3e250e201f8fae9330bce1a5e321cb84aaa5 [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Wed Jan 18 17:21:03 2017 +0000
committer: Simon Butcher <simon.butcher@arm.com> Mon Feb 20 21:51:18 2017 +0000
tree: 3347664157b36b214f29d35cb1d13a1ee544c1eb
parent: ef1329e4afb44ed55a0124b0c820d15e816b4fc4 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 5856f41..e8fa013 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -12,6 +12,8 @@
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
    * Fixed potential arithmetic overflow in mbedtls_md2_update() that could
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
+   * Fixed potential arithmetic overflow in mbedtls_base64_decode() that could
+     cause buffer bound checks to be bypassed. Found by Eyal Itkin.
 
 = mbed TLS 2.1.6 branch released 2016-10-17
commit	d00d3e250e201f8fae9330bce1a5e321cb84aaa5	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Wed Jan 18 17:21:03 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Mon Feb 20 21:51:18 2017 +0000
tree	3347664157b36b214f29d35cb1d13a1ee544c1eb
parent	ef1329e4afb44ed55a0124b0c820d15e816b4fc4 [diff] [blame]