Log - c047c74b95b25e79f0638b51cadde192d521b910 - mirror/mbed-tls

c047c74 Merge of multiple security fixes by Simon Butcher · 10 years ago
d64f1ad Fix potential overflow in CertificateRequest by Manuel Pégourié-Gonnard · 10 years ago
65d6a97 Add ChangeLog entry by Manuel Pégourié-Gonnard · 10 years ago
9a656a0 Fix typos in ChangeLog by Manuel Pégourié-Gonnard · 10 years ago
e4e4be7 Fix potential overflow in base64_encode by Manuel Pégourié-Gonnard · 10 years ago
b73ce45 Fix potential random malloc in pem_read() by Manuel Pégourié-Gonnard · 10 years ago
9b75305 Fix potential buffer overflow in mpi_read_string() by Manuel Pégourié-Gonnard · 10 years ago
73011bb Fix stack buffer overflow in pkcs12 by Manuel Pégourié-Gonnard · 10 years ago
2cf9696 Refined credits in ChangeLog for fuzzing issue by Simon Butcher · 10 years ago
9405e46 Bump version to 1.2.15 by Manuel Pégourié-Gonnard · 10 years ago polarssl-1.2.16
2bc4505 Add counter-measure against RSA-CRT attack by Manuel Pégourié-Gonnard · 10 years ago
fa566e3 Fix possible client crash on API misuse by Manuel Pégourié-Gonnard · 10 years ago
aa4e55b Fix warning with MD/SHA ALT implementation by Manuel Pégourié-Gonnard · 10 years ago
faf44ab Accept a trailing space at end of PEM lines by Manuel Pégourié-Gonnard · 10 years ago
ebb9cf9 Fix compile error with armcc5 --gnu by Manuel Pégourié-Gonnard · 10 years ago
af39e3e Fix missing -static-libgcc for dlls by Manuel Pégourié-Gonnard · 10 years ago
7f61053 Fix bug with cmake and old version of GCC by Manuel Pégourié-Gonnard · 10 years ago
7fc4e3e Prepare for 1.2.15 release by Paul Bakker · 10 years ago polarssl-1.2.15
3517c20 Up default server DH params to 2048 bits by Manuel Pégourié-Gonnard · 10 years ago
26d88cf Fix thread-safety issue in debug.c by Manuel Pégourié-Gonnard · 10 years ago
5324d41 Up min size of DHM params to 1024 bits by Manuel Pégourié-Gonnard · 10 years ago
7b20957 Prepare for 1.2.14 release by Paul Bakker · 10 years ago polarssl-1.2.14
70f0df9 Add countermeasure against cache-based lucky 13 by Manuel Pégourié-Gonnard · 10 years ago
0c2fa144 Fix invalid memory read in x509_get_sig() by Manuel Pégourié-Gonnard · 10 years ago
cd7d24d Fix bug in Via Padlock support by Manuel Pégourié-Gonnard · 10 years ago
7e82884 Fix hardclock with some versions of mingw64 by Manuel Pégourié-Gonnard · 10 years ago
a9553a8 Fix warnings from mingw64 in timing.c by Manuel Pégourié-Gonnard · 10 years ago
64f65e8 Fix potential unintended sign extension by Manuel Pégourié-Gonnard · 10 years ago
82f1a88 Update Changelog for the last two commits by Manuel Pégourié-Gonnard · 10 years ago
9fdc58f Ready for release 1.2.13 by Paul Bakker · 10 years ago polarssl-1.2.13
f097400 Fix small bug in base64_encode() by Manuel Pégourié-Gonnard · 11 years ago
b82f591 Fix mips64 bignum implementation by James Cowgill · 11 years ago
2dc15c8 Fix unchecked error on windows by Manuel Pégourié-Gonnard · 11 years ago
d643592 Fix bug on s390 by Manuel Pégourié-Gonnard · 11 years ago
258bab0 Fix missing bound check by Manuel Pégourié-Gonnard · 11 years ago
4cdb3ba Add POLARSSL_X509_MAX_INTERMEDIATE_CA by Manuel Pégourié-Gonnard · 11 years ago
1c022a6 Fix memory leaks in PKCS#5 and PKCS#12 by Manuel Pégourié-Gonnard · 11 years ago
d8a1ea7 Fix potential buffer overread of size 1 by Manuel Pégourié-Gonnard · 11 years ago
ffbeedb Fix potential undefined behaviour in Camellia by Manuel Pégourié-Gonnard · 11 years ago
017bf57 Forbid repeated X.509 extensions by Manuel Pégourié-Gonnard · 11 years ago
360eb91 Fix potential stack overflow by Manuel Pégourié-Gonnard · 11 years ago
fdec957 Fix memory leak with crafted X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
d3ae430 Fix uninitialised pointer dereference by Manuel Pégourié-Gonnard · 11 years ago
d730aa5 Use blinding for RSA even without CRT by Manuel Pégourié-Gonnard · 11 years ago
fc3697c Prepared for PolarSSL-1.2.12 by Paul Bakker · 11 years ago polarssl-1.2.12
0b12d5e Accept spaces at EOL/buffer in base64_decode() by Manuel Pégourié-Gonnard · 11 years ago
a611874 Update changelog for the last few commits by Manuel Pégourié-Gonnard · 11 years ago
9711920 Fix ssl_read wrt non-Application Data by Manuel Pégourié-Gonnard · 11 years ago
3fdfced Fix net_accept() regarding non-blocking sockets by Manuel Pégourié-Gonnard · 11 years ago
982eda3 Don't print uninitialised buffer in ssl_mail_client by Manuel Pégourié-Gonnard · 11 years ago
0b0b522 Fix compiler warnings on iOS by Manuel Pégourié-Gonnard · 11 years ago
7d75ea4 x509_crt_parse() did not increase total_failed on PEM error by Manuel Pégourié-Gonnard · 11 years ago
86792a6 Fix ssl_close_notify() with non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
066c1f6 Fix potential bad read in parsing ServerHello by Manuel Pégourié-Gonnard · 11 years ago
6b44038 Fix memory leak parsing some X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
695266c Updated to version 1.2.11 by Paul Bakker · 11 years ago
bbc843f Fix base64_decode() to return and check length correctly by Paul Bakker · 11 years ago
03917bf Disable broken Sparc64 bn_mul assembly by Manuel Pégourié-Gonnard · 11 years ago
4564af9 Fix asm format of bn_mul.h for more portability by Manuel Pégourié-Gonnard · 11 years ago
22ca9c0 Fix preprocessor checks for bn_mul PPC asm by Barry K. Nathan · 11 years ago
5bad6af Fix length checking for AEAD ciphersuites by Paul Bakker · 11 years ago
312da33 Introduce polarssl_zeroize() instead of memset() for zeroization by Paul Bakker · 11 years ago
75ee010 Stricter check on SSL ClientHello internal sizes compared to actual packet size by Paul Bakker · 11 years ago
55bdbc1 Make compilation on DragonFly work by Markus Pfeiffer · 11 years ago
358d325 Fix bug with mpi_fill_random() on big-endian by Paul Bakker · 11 years ago
95a11f8 On OpenBSD, use arc4random_buf() instead of rand() to prevent warnings by Paul Bakker · 11 years ago
b0af563 rsa_check_pubkey() now allows an E up to N by Paul Bakker · 11 years ago
838ed3c Improve interop by not writing ext_len in ClientHello when 0 by Paul Bakker · 11 years ago
243d618 Reject certificates with times not in UTC by Paul Bakker · 11 years ago
f48de95 Use UTC to heck certificate validity by Paul Bakker · 11 years ago
dedce0c Prevent potential NULL pointer dereference in ssl_read_record() by Paul Bakker · 11 years ago
6995efe Potential memory leak in mpi_exp_mod() when error occurs during by Paul Bakker · 11 years ago
3cbaf1e Add ssl_close_notify() to servers that missed it by Paul Bakker · 11 years ago
358a841 x509_get_current_time() uses localtime_r() to prevent thread issues by Paul Bakker · 11 years ago
24aaf44 Make sure no random pointer occur during failed malloc()'s by Paul Bakker · 11 years ago
bc89849 Improvements to tests/Makefile when using shared library by Paul Bakker · 11 years ago
1e94237 Support for seed file writing and reading in Entropy by Paul Bakker · 11 years ago
b000f82 ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr by Paul Bakker · 11 years ago
57291a7 Work around a compiler bug on OS X. by Manuel Pégourié-Gonnard · 11 years ago
3baeb15 Update changelog for cmake changes by Manuel Pégourié-Gonnard · 11 years ago
e635604 Don't try to use MIPS32 asm macros on MIPS64 by Alex Wilson · 11 years ago
be04673 Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
963918b Countermeasure against "triple handshake" attack by Manuel Pégourié-Gonnard · 11 years ago
57ca570 Fixed CMake symlinking on out-of-source builds by Paul Bakker · 11 years ago
6d841c2 Fix verion-major intolerance by Manuel Pégourié-Gonnard · 11 years ago
e96bfbc Fixed testing with out-of-source builds using cmake by Paul Bakker · 11 years ago
c675e4b Fix bug in RSA PKCS#1 v1.5 "reversed" operations by Manuel Pégourié-Gonnard · 12 years ago
af0ccc8 SMTP lines are officially terminated with CRLF, ssl_mail_client fixed by Paul Bakker · 12 years ago
0b6355d Updated ChangeLog by Paul Bakker · 11 years ago
d15718c Updated ChangeLog by Paul Bakker · 11 years ago
d83584e Fixed potential overflow in certificate size in ssl_write_certificate() by Paul Bakker · 12 years ago
78e8196 Added missing MPI_CHK() around some statements by Paul Bakker · 12 years ago
40cc914 Fixed x509_crt_parse_path() bug on Windows platforms by Paul Bakker · 11 years ago
b9f6d50 crypt_and_hash: check MAC earlier by Manuel Pégourié-Gonnard · 12 years ago
a1caf6e SSL now gracefully handles missing RNG by Paul Bakker · 12 years ago
c941adb Fixed X.509 hostname comparison (with non-regular characters) by Paul Bakker · 11 years ago
e46b177 Make get_pkcs_padding() constant-time by Paul Bakker · 11 years ago
9ccb211 Introduced POLARSSL_HAVE_READDIR_R for systems without it by Paul Bakker · 11 years ago
6b06502 Changed RSA blinding to a slower but thread-safe version by Paul Bakker · 12 years ago polarssl-1.2.10