Log - c047c74b95b25e79f0638b51cadde192d521b910 - mirror/mbed-tls

c047c74 Merge of multiple security fixes by Simon Butcher · 10 years ago
42571dd Fix references to non-standard SIZE_T_MAX by Manuel Pégourié-Gonnard · 10 years ago
d64f1ad Fix potential overflow in CertificateRequest by Manuel Pégourié-Gonnard · 10 years ago
e4e4be7 Fix potential overflow in base64_encode by Manuel Pégourié-Gonnard · 10 years ago
b73ce45 Fix potential random malloc in pem_read() by Manuel Pégourié-Gonnard · 10 years ago
9b75305 Fix potential buffer overflow in mpi_read_string() by Manuel Pégourié-Gonnard · 10 years ago
73011bb Fix stack buffer overflow in pkcs12 by Manuel Pégourié-Gonnard · 10 years ago
13ca895 Added max length checking of hostname by Simon Butcher · 10 years ago
a7975dc Remove file that should never have been added by Manuel Pégourié-Gonnard · 10 years ago
9405e46 Bump version to 1.2.15 by Manuel Pégourié-Gonnard · 10 years ago polarssl-1.2.16
2bc4505 Add counter-measure against RSA-CRT attack by Manuel Pégourié-Gonnard · 10 years ago
fa566e3 Fix possible client crash on API misuse by Manuel Pégourié-Gonnard · 10 years ago
aa4e55b Fix warning with MD/SHA ALT implementation by Manuel Pégourié-Gonnard · 10 years ago
faf44ab Accept a trailing space at end of PEM lines by Manuel Pégourié-Gonnard · 10 years ago
af39e3e Fix missing -static-libgcc for dlls by Manuel Pégourié-Gonnard · 10 years ago
7fc4e3e Prepare for 1.2.15 release by Paul Bakker · 10 years ago polarssl-1.2.15
3517c20 Up default server DH params to 2048 bits by Manuel Pégourié-Gonnard · 10 years ago
78a428d Fix unchecked malloc() by Manuel Pégourié-Gonnard · 10 years ago
26d88cf Fix thread-safety issue in debug.c by Manuel Pégourié-Gonnard · 10 years ago
5324d41 Up min size of DHM params to 1024 bits by Manuel Pégourié-Gonnard · 10 years ago
7b20957 Prepare for 1.2.14 release by Paul Bakker · 10 years ago polarssl-1.2.14
70f0df9 Add countermeasure against cache-based lucky 13 by Manuel Pégourié-Gonnard · 10 years ago
0c2fa144 Fix invalid memory read in x509_get_sig() by Manuel Pégourié-Gonnard · 10 years ago
cd7d24d Fix bug in Via Padlock support by Manuel Pégourié-Gonnard · 10 years ago
7e82884 Fix hardclock with some versions of mingw64 by Manuel Pégourié-Gonnard · 10 years ago
a9553a8 Fix warnings from mingw64 in timing.c by Manuel Pégourié-Gonnard · 10 years ago
64f65e8 Fix potential unintended sign extension by Manuel Pégourié-Gonnard · 10 years ago
aa695be Fix version-major intolerance again by Manuel Pégourié-Gonnard · 10 years ago
9b4c5d9 Revert "Fix verion-major intolerance" by Manuel Pégourié-Gonnard · 10 years ago
9fdc58f Ready for release 1.2.13 by Paul Bakker · 10 years ago polarssl-1.2.13
530927b Update copyright line to 2015 by Paul Bakker · 10 years ago
f097400 Fix small bug in base64_encode() by Manuel Pégourié-Gonnard · 11 years ago
2dc15c8 Fix unchecked error on windows by Manuel Pégourié-Gonnard · 10 years ago
e12abf9 Fix url by Manuel Pégourié-Gonnard · 11 years ago
0edee5e Update copyright notice by Manuel Pégourié-Gonnard · 11 years ago
258bab0 Fix missing bound check by Manuel Pégourié-Gonnard · 11 years ago
4cdb3ba Add POLARSSL_X509_MAX_INTERMEDIATE_CA by Manuel Pégourié-Gonnard · 11 years ago
6a095d2 Make x509parse_crt() iterative by Manuel Pégourié-Gonnard · 11 years ago
1c022a6 Fix memory leaks in PKCS#5 and PKCS#12 by Manuel Pégourié-Gonnard · 11 years ago
d8a1ea7 Fix potential buffer overread of size 1 by Manuel Pégourié-Gonnard · 11 years ago
ffbeedb Fix potential undefined behaviour in Camellia by Manuel Pégourié-Gonnard · 11 years ago
6c28491 Backport build modes from 1.3 by Manuel Pégourié-Gonnard · 11 years ago
017bf57 Forbid repeated X.509 extensions by Manuel Pégourié-Gonnard · 11 years ago
360eb91 Fix potential stack overflow by Manuel Pégourié-Gonnard · 11 years ago
fdec957 Fix memory leak with crafted X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
d3ae430 Fix uninitialised pointer dereference by Manuel Pégourié-Gonnard · 11 years ago
d730aa5 Use blinding for RSA even without CRT by Manuel Pégourié-Gonnard · 11 years ago
fc3697c Prepared for PolarSSL-1.2.12 by Paul Bakker · 11 years ago polarssl-1.2.12
0b12d5e Accept spaces at EOL/buffer in base64_decode() by Manuel Pégourié-Gonnard · 11 years ago
d6d5ef2 timing.c: avoid referencing garbage value by Alfred Klomp · 11 years ago
ec99373 pkcs5.c: fix dead store: return proper exit status by Alfred Klomp · 11 years ago
9711920 Fix ssl_read wrt non-Application Data by Manuel Pégourié-Gonnard · 11 years ago
3fdfced Fix net_accept() regarding non-blocking sockets by Manuel Pégourié-Gonnard · 11 years ago
0b0b522 Fix compiler warnings on iOS by Manuel Pégourié-Gonnard · 11 years ago
7d75ea4 x509_crt_parse() did not increase total_failed on PEM error by Manuel Pégourié-Gonnard · 11 years ago
86792a6 Fix ssl_close_notify() with non-blocking I/O by Manuel Pégourié-Gonnard · 11 years ago
066c1f6 Fix potential bad read in parsing ServerHello by Manuel Pégourié-Gonnard · 11 years ago
6b44038 Fix memory leak parsing some X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
308a586 Better placement of memset() to prevent compiler warning under MSVC by Paul Bakker · 11 years ago polarssl-1.2.11
695266c Updated to version 1.2.11 by Paul Bakker · 11 years ago
0cdde2d Fix minlen for GCM suites by Manuel Pégourié-Gonnard · 11 years ago
a16e7f2 Proper initialization and checks for rare cases by Paul Bakker · 11 years ago
1d073c5 Add static and casts to prevent compiler warnings by Paul Bakker · 11 years ago
f73b718 Latest CBC padding check by Paul Bakker · 11 years ago
bbc843f Fix base64_decode() to return and check length correctly by Paul Bakker · 11 years ago
877a094 Padlock asm using \n\t too by Manuel Pégourié-Gonnard · 11 years ago
4467fb7 Check input lengths in GCM by Manuel Pégourié-Gonnard · 11 years ago
5bad6af Fix length checking for AEAD ciphersuites by Paul Bakker · 11 years ago
312da33 Introduce polarssl_zeroize() instead of memset() for zeroization by Paul Bakker · 11 years ago
1b08bd9 Fix WSAStartup return value check. by Peter Vaskovic · 11 years ago
02388c9 Fix minor format string inconsistency. by Peter Vaskovic · 11 years ago
75ee010 Stricter check on SSL ClientHello internal sizes compared to actual packet size by Paul Bakker · 11 years ago
55bdbc1 Make compilation on DragonFly work by Markus Pfeiffer · 11 years ago
358d325 Fix bug with mpi_fill_random() on big-endian by Paul Bakker · 11 years ago
95a11f8 On OpenBSD, use arc4random_buf() instead of rand() to prevent warnings by Paul Bakker · 11 years ago
ccebf6e Sanity length checks in ssl_read_record() and ssl_fetch_input() by Paul Bakker · 11 years ago
b0af563 rsa_check_pubkey() now allows an E up to N by Paul Bakker · 11 years ago
838ed3c Improve interop by not writing ext_len in ClientHello when 0 by Paul Bakker · 11 years ago
676093e Check setsockopt() return value in net_bind() by Paul Bakker · 11 years ago
7890e62 Added missing MPI_CHK around mpi functions by Paul Bakker · 11 years ago
243d618 Reject certificates with times not in UTC by Paul Bakker · 11 years ago
f48de95 Use UTC to heck certificate validity by Paul Bakker · 11 years ago
dedce0c Prevent potential NULL pointer dereference in ssl_read_record() by Paul Bakker · 11 years ago
6995efe Potential memory leak in mpi_exp_mod() when error occurs during by Paul Bakker · 11 years ago
358a841 x509_get_current_time() uses localtime_r() to prevent thread issues by Paul Bakker · 11 years ago
24aaf44 Make sure no random pointer occur during failed malloc()'s by Paul Bakker · 11 years ago
c2262b5 Tune debug_print_ret format by Manuel Pégourié-Gonnard · 11 years ago
ef3cf70 Provide no info from entropy_func() on future entropy by Paul Bakker · 11 years ago
1e94237 Support for seed file writing and reading in Entropy by Paul Bakker · 11 years ago
22a0ce0 Fix warning on MinGW and MSVC12 by Paul Bakker · 11 years ago
8cb7320 MinGW32 static build should link to windows libs and libz by Paul Bakker · 11 years ago
b000f82 ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr by Paul Bakker · 11 years ago
a9f86e0 Make the compiler work-around more specific by Manuel Pégourié-Gonnard · 11 years ago
57291a7 Work around a compiler bug on OS X. by Manuel Pégourié-Gonnard · 11 years ago
97a11c1 CMake: allow to build both shared and static at once by hasufell · 11 years ago
be04673 Forbid sequence number wrapping by Manuel Pégourié-Gonnard · 11 years ago
50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
0d844dd Add x509parse_time_future() by Paul Bakker · 11 years ago
963918b Countermeasure against "triple handshake" attack by Manuel Pégourié-Gonnard · 11 years ago
397858b Avoid "unreachable code" warning by Manuel Pégourié-Gonnard · 11 years ago