TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-04-08 21:37:20 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
faf0b8604ac49456b0cff7a34ad27485ca145cce
mbedtls/ChangeLog.d
History
Gilles Peskine faf0b8604a mbedtls_ssl_decrypt_buf(): fix buffer overread with stream cipher 
With stream ciphers, add a check that there's enough room to read a MAC in
the record. Without this check, subtracting the MAC length from the data
length resulted in an integer underflow, causing the MAC calculation to try
reading (SIZE_MAX + 1 - maclen) bytes of input, which is a buffer overread.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-09-18 19:07:50 +02:00
..
00README.md
Clarify changelog not needed for compiler warnings
2023-08-02 13:01:14 +01:00
add-aes-128bit-only.txt
ChangeLog: remove issue number as this is a new feature
2023-05-10 18:10:03 +08:00
add-aes-hardware-only-option.txt
Improve error message and documents
2023-08-02 17:44:03 +08:00
add-directoryname-san.txt
Add changelog entry for directoryname SAN
2023-03-29 11:38:47 -04:00
add-getters-for-some-fields.txt
Add changelog entries
2023-07-10 13:25:28 +08:00
add-milliseconds-time-api.txt
Update changelog
2023-03-13 11:39:43 +08:00
add-missing-md-includes.txt
Add a changelog entry
2023-04-06 03:04:15 -04:00
add-new-pkcs5-pbe2-ext-fun.txt
Improve mbedtls_pkcs5_pbes2_ext changelog description
2023-08-29 14:56:15 +01:00
add-pbkdf2-cmac.txt
Add changelog entry
2023-07-04 15:17:03 +05:30
add-pbkdf2-hmac.txt
Edit changelog
2023-06-08 16:43:32 +05:30
add-psa_want_alg_some_pake.txt
Only include psa_pake_setup() and friends if some PAKE algorithms are required
2023-05-12 12:36:24 +01:00
add-rfc822-directoryname-csr-gen.txt
Changelog entry
2023-07-07 09:05:41 -04:00
add-subjectAltName-certs.txt
Add documentation and a changelog entry
2023-05-17 15:23:56 -04:00
aes-perf.txt
Improve changelog
2023-06-16 15:27:23 +01:00
armclang-compile-fix.txt
Improve changelog
2023-06-04 20:41:24 -04:00
basic-uri-verification.txt
Add partial support for URI SubjectAltNames
2023-05-10 09:57:19 -04:00
bugfix_iar_typo.txt
Reword changelog entry
2023-06-15 14:08:19 +01:00
cmake-pass-through-config-defines.txt
Add ChangeLog entry for CMake config defines
2023-07-07 11:25:40 +01:00
Define-PSA_WANT_KEY_TYPE_xxx_KEY_PAIR_yyy.txt
changelog: fix errors/typos
2023-07-27 10:57:55 +02:00
driver-ffdh.txt
Add changelog entry (FFDH driver dispatch)
2023-05-11 12:23:12 +02:00
driver-only-ecc.txt
Add Changelog for driver-only ECC so far
2023-07-07 17:09:14 +02:00
driver-only-hashes.txt
Add a ChangeLog entry for driver-only hashes
2023-03-24 10:44:59 +01:00
ec_jpake_user_peer_2.txt
Add change log entry (j-pake user/peer accept any values)
2023-03-23 13:37:18 +01:00
enforce-min-RSA-key-size.txt
Improve naming of mimimum RSA key size generation configurations
2023-07-27 14:50:09 +00:00
extend-pk-opaque-ecc.txt
Add ChangeLog entry for PK_OPAQUE extensions
2023-07-07 17:09:14 +02:00
ffdh-tls-1-3.txt
Further code optimizations
2023-06-06 12:31:09 +02:00
fix-a-few-unchecked-return.txt
Add changelog entry
2023-08-11 18:19:15 +08:00
fix-aes-cbc-iv-corruption
Add changelog
2023-08-11 17:04:06 +01:00
fix-crypt_and_hash-decrypt-issue.txt
Add crypt_and_hash decrypt issue to Changelog
2023-06-12 17:37:23 +01:00
fix-declaration-of-mbedtls_ecdsa_sign_det_restartable-function.txt
ecdsa: fix -missing-prototypes warning when MBEDTLS_ECDSA_SIGN_ALT is defined
2023-04-17 12:53:00 +05:30
fix-empty-enum.txt
Fix Changelog
2023-08-14 15:19:23 +01:00
fix-hrr-in-psk-kem.txt
Add change log
2023-07-07 15:53:34 +02:00
fix-iar-compiler-warnings.txt
Remove IAR warning fixes to 2.28 from changelog
2023-08-22 15:24:38 +01:00
fix-ilp32.txt
Improve changelog
2023-06-21 12:36:52 +01:00
fix-string-to-names-retcode.txt
Add ChangeLog entry for string_to_names() fix
2023-06-27 15:38:02 +01:00
fix-tfm-build.txt
fix trailing whitespace
2023-06-28 11:29:27 +01:00
fix-unterminated-pragma-clang-attribute-push.txt
Fix "unterminated '#pragma clang attribute push'" in sha256/sha512.c
2023-06-09 11:29:50 +01:00
improve-doc-on-ecp-curve-optimized-representation.txt
Add changelog
2023-08-09 21:49:58 +08:00
inject-entropy.txt
Fix a build error when MBEDTLS_PSA_INJECT_ENTROPY is enabled
2023-04-28 21:00:28 +02:00
MBEDTLS_CIPHER_BLKSIZE_MAX.txt
Changelog entry for the MBEDTLS_CIPHER_BLKSIZE_MAX deprecation
2023-06-14 18:00:37 +02:00
mbedtls_ecdsa_can_do-unconditional-define.txt
Adjust ChangeLog
2023-04-26 19:00:46 -05:00
mbedtls_x509_time.txt
Reuse time when verifying certificate chain
2023-06-09 17:01:03 +01:00
misc-from-psa-crypto.txt
Add change log and non-regression test
2023-07-17 11:53:20 +02:00
oid-parse-from-numeric-string.txt
Reword ChangeLog entry for consistency
2023-05-31 14:36:41 +01:00
programs_psa_fix.txt
Add changelog entry (PSA initialization in sample programs)
2023-04-24 08:03:30 +02:00
psa_crypto_user_config_file.txt
Fix condition to include MBEDTLS_PSA_CRYPTO_USER_CONFIG_FILE
2023-08-21 16:09:14 +02:00
python3.8.txt
Officially require Python 3.8
2023-07-03 17:59:37 +02:00
rfc8410.txt
Read and write X25519 and X448 private keys
2023-05-04 13:01:47 +02:00
safer-ct.txt
Add missing hyphen
2023-09-08 10:45:34 +01:00
sha3.txt
Spell as SHA-3 not SHA3
2023-06-07 17:08:09 +01:00
sha384-blocksize.txt
Improve phrasing
2023-06-11 16:29:54 +01:00
some-max-size-macro-are-too-small-when-psa-ecc-is-accelerated.txt
adding missing newline at the end of changelog file
2023-04-03 10:55:29 +02:00
ssl_debug_helpers-stack_usage.txt
Fix very high stack usage in SSL debug code
2023-06-20 17:48:18 +02:00
ssl_decrypt_buf-short_record.txt
mbedtls_ssl_decrypt_buf(): fix buffer overread with stream cipher
2023-09-18 19:07:50 +02:00
ssl_premaster_secret-empty.txt
Fix empty union when TLS is disabled
2023-06-25 21:41:58 +02:00
tls13-server-version-negotiation.txt
Update TLS 1.3 documentation and add change log
2023-04-06 10:26:18 +02:00
use_heap_rsa_signature.txt
rsa_signature: Use heap memory to allocate DER encoded RSA private key
2023-07-27 14:51:25 +05:30
verify-ip-sans-properly.txt
add IP SAN tests changes per mbedTLS standards
2023-04-11 08:29:42 -04:00
x509-ec-algorithm-identifier-fix.txt
Updated changelog
2023-07-12 17:15:38 +02:00
X509Parse_SignatureKeyId_AuthorityKeyId.txt
Correcting documentation issues:
2023-04-04 17:48:27 +02:00