Fix potential buffer overflow in asn1write

2026-05-11 14:38:17 +02:00 · 2015-10-21 12:07:47 +02:00
parent 9dc66f4b2f
commit 0d66bb959f
2 changed files with 7 additions and 3 deletions
--- a/4
+++ b/4
@@ -9,6 +9,10 @@ Security
   * Fix potential heap corruption on Windows when
     mbedtls_x509_crt_parse_path() is passed a path longer than 2GB. Cannot be
     triggered remotely. Found by Guido Vranken, Interlworks.
+   * Fix potential buffer overflow in some asn1_write_xxx() functions.
+     Cannot be triggered remotely unless you create X.509 certificates based
+     on untrusted input or write keys of untrusted origin. Found by Guido
+     Vranken, Interlworks.
   * The X509 max_pathlen constraint was not enforced on intermediate
     certificates. Found by Nicholas Wilson, fix and tests provided by
     Janos Follath. #280 and #319