74ef65077202543b06f1d310d2db3fb69facc0d7 - mirror/mbed-tls

commit	74ef65077202543b06f1d310d2db3fb69facc0d7	[log] [tgz]
author	Andres Amaya Garcia <Andres.AmayaGarcia@arm.com>	Wed Jan 18 13:56:58 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Sat Feb 25 21:25:44 2017 +0000
tree	85160e0695c42b44f08d7faffb205aa4dc57caf5
parent	480f7e7d5e5996f2bfd9a88aa2a043edae5c0354 [diff]

Fix integer overflows in buffer bound checks

Fix potential integer overflows in the following functions:
  * mbedtls_md2_update() to be bypassed and cause
  * mbedtls_cipher_update()
  * mbedtls_ctr_drbg_reseed()
This overflows would mainly be exploitable in 32-bit systems and could
cause buffer bound checks to be bypassed.

ChangeLog[diff]
library/cipher.c[diff]
library/ctr_drbg.c[diff]
library/md2.c[diff]

4 files changed

tree: 85160e0695c42b44f08d7faffb205aa4dc57caf5

configs/
doxygen/
include/
library/
programs/
scripts/
tests/
visualc/
.gitignore
.travis.yml
ChangeLog
CMakeLists.txt
DartConfiguration.tcl
LICENSE
Makefile
README.rst