TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-04-05 03:56:04 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c8df898204584e92b9e5001847788d899b34353d
mbedtls/library
History
Gilles Peskine c8df898204 Fix buffer overflow in TLS 1.2 ClientKeyExchange parsing 
Fix a buffer overflow in TLS 1.2 ClientKeyExchange parsing. When
MBEDTLS_USE_PSA_CRYPTO is enabled, the length of the public key in an ECDH
or ECDHE key exchange was not validated. This could result in an overflow of
handshake->xxdh_psa_peerkey, overwriting further data in the handshake
structure or further on the heap.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-10-02 15:02:33 +02:00
..
.gitignore
aes.c
aesce.c
aesce.h
aesni.c
aesni.h
alignment.h
aria.c
asn1parse.c
Reduce size of mbedtls_asn1_get_len
2023-09-21 10:35:33 +01:00
asn1write.c
code style
2023-09-15 18:30:09 +01:00
base64_internal.h
base64.c
bignum_core.c
bignum_core.h
bignum_mod_raw_invasive.h
bignum_mod_raw.c
bignum_mod_raw.h
bignum_mod.c
bignum_mod.h
bignum.c
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
bn_mul.h
camellia.c
ccm.c
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
chacha20.c
chachapoly.c
Eliminate duplicate ct memcmp
2023-09-18 19:09:45 +01:00
check_crypto_config.h
cipher_wrap.c
cipher_wrap.h
cipher.c
Merge pull request #1083 from gilles-peskine-arm/development-restricted-merge-20230925
2023-09-25 18:16:01 +01:00
cmac.c
CMakeLists.txt
common.h
constant_time_impl.h
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
constant_time_internal.h
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
constant_time.c
Simplify mbedtls_ct_memcmp_partial
2023-09-19 17:21:50 +01:00
ctr_drbg.c
debug.c
des.c
dhm.c
ecdh.c
ecdsa.c
ecjpake.c
ecp_curves_new.c
ecp_curves.c
ecp_internal_alt.h
ecp_invasive.h
ecp.c
entropy_poll.c
entropy_poll.h
entropy.c
gcm.c
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
hkdf.c
hmac_drbg.c
lmots.c
lmots.h
lms.c
Makefile
md5.c
md_psa.h
md_wrap.h
md.c
memory_buffer_alloc.c
mps_common.h
mps_error.h
mps_reader.c
mps_reader.h
mps_trace.c
mps_trace.h
net_sockets.c
nist_kw.c
Use mbedtls_ct_error_if
2023-09-22 10:01:47 +01:00
oid.c
padlock.c
padlock.h
pem.c
pk_internal.h
Add tests to test pkcs8 parsing of encrypted keys
2023-09-20 19:29:02 +01:00
pk_wrap.c
pk_wrap.h
pk.c
pkcs5.c
Switch pkparse to use new mbedtls_pkcs5_pbes2_ext function
2023-09-20 19:28:28 +01:00
pkcs7.c
pkcs12.c
Switch pkparse to use new mbedtls_pkcs12_pbe_ext function
2023-09-20 19:29:02 +01:00
pkparse.c
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
pkwrite.c
Merge pull request #8234 from kouzhudong/development
2023-09-25 10:51:46 +01:00
pkwrite.h
platform_util.c
platform.c
poly1305.c
psa_crypto_aead.c
psa_crypto_aead.h
psa_crypto_cipher.c
psa_crypto_cipher.h
psa_crypto_client.c
psa_crypto_core_common.h
psa_crypto_core.h
psa_crypto_driver_wrappers.h
Give a production-sounding name to the p256m option
2023-09-20 20:49:47 +02:00
psa_crypto_ecp.c
psa_crypto_ecp.h
psa_crypto_ffdh.c
psa_crypto_ffdh.h
psa_crypto_hash.c
psa_crypto_hash.h
psa_crypto_invasive.h
psa_crypto_its.h
psa_crypto_mac.c
psa_crypto_mac.h
psa_crypto_pake.c
psa_crypto_pake.h
psa_crypto_random_impl.h
psa_crypto_rsa.c
psa_crypto_rsa.h
psa_crypto_se.c
psa_crypto_se.h
psa_crypto_slot_management.c
psa_crypto_slot_management.h
psa_crypto_storage.c
psa_crypto_storage.h
psa_crypto.c
Merge pull request #7961 from gilles-peskine-arm/psa_crypto_config-in-full
2023-09-18 08:13:12 +00:00
psa_its_file.c
psa_util_internal.h
psa_util.c
ripemd160.c
rsa_alt_helpers.c
rsa_alt_helpers.h
rsa.c
Use mbedtls_ct_error_if
2023-09-22 10:01:47 +01:00
sha1.c
sha3.c
sha256.c
sha512.c
ssl_cache.c
ssl_ciphersuites.c
Merge pull request #7921 from valeriosetti/issue7613
2023-09-20 12:47:55 +00:00
ssl_client.c
Merge pull request #7921 from valeriosetti/issue7613
2023-09-20 12:47:55 +00:00
ssl_client.h
ssl_cookie.c
ssl_debug_helpers.h
ssl_misc.h
Merge pull request #7921 from valeriosetti/issue7613
2023-09-20 12:47:55 +00:00
ssl_msg.c
Merge remote-tracking branch 'upstream-public/development' into development-restricted-merge-20230925
2023-09-25 16:16:26 +02:00
ssl_ticket.c
ssl_tls12_client.c
Merge pull request #7921 from valeriosetti/issue7613
2023-09-20 12:47:55 +00:00
ssl_tls12_server.c
Fix buffer overflow in TLS 1.2 ClientKeyExchange parsing
2023-10-02 15:02:33 +02:00
ssl_tls13_client.c
ssl_tls13_generic.c
Fix buffer overflow in TLS 1.3 ECDH public key parsing
2023-10-02 15:02:10 +02:00
ssl_tls13_invasive.h
ssl_tls13_keys.c
ssl_tls13_keys.h
ssl_tls13_server.c
ssl_tls.c
Merge pull request #7921 from valeriosetti/issue7613
2023-09-20 12:47:55 +00:00
threading.c
timing.c
version.c
x509_create.c
Fix propagation of return value from parse_attribute_value_hex_der_encoded
2023-09-25 19:59:31 +02:00
x509_crl.c
x509_crt.c
x509_csr.c
x509.c
x509write_crt.c
x509write_csr.c
x509write.c