Parse HelloVerifyRequest buffer overread: add changelog entry

2026-05-11 06:28:17 +02:00 · 2019-09-27 14:07:00 +02:00
parent 2414ce1a5e
commit 99258ff315
1 changed files with 2 additions and 0 deletions
--- a/2
+++ b/2
@@ -7,6 +7,8 @@ Security
     during certificate extensions parsing. In case of receiving malformed
     input (extensions length field equal to 0), an illegal read of one byte
     beyond the input buffer is made. Found and analyzed by Nathan Crandall.
+   * Fix a potentially remotely exploitable buffer overread in a
+     DTLS client when parsing the Hello Verify Request message.

 Bugfix
   * Fix a potential memory leak in mbedtls_ssl_setup() function. An allocation