Fix potential buffer overflow in asn1write

commit: 0d66bb959ff42bbd527cda3e389cae202ce75aba [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Wed Oct 21 12:07:47 2015 +0200
committer: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Mon Nov 02 10:42:44 2015 +0900
tree: 8eec31dd5661c7d820b97af61a8290123ccb6d24
parent: 9dc66f4b2f65666d26ca658a020fabf134584c09 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 85909ca..1447fdc 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -9,6 +9,10 @@
    * Fix potential heap corruption on Windows when
      mbedtls_x509_crt_parse_path() is passed a path longer than 2GB. Cannot be
      triggered remotely. Found by Guido Vranken, Interlworks.
+   * Fix potential buffer overflow in some asn1_write_xxx() functions.
+     Cannot be triggered remotely unless you create X.509 certificates based
+     on untrusted input or write keys of untrusted origin. Found by Guido
+     Vranken, Interlworks.
    * The X509 max_pathlen constraint was not enforced on intermediate
      certificates. Found by Nicholas Wilson, fix and tests provided by
      Janos Follath. #280 and #319
commit	0d66bb959ff42bbd527cda3e389cae202ce75aba	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Wed Oct 21 12:07:47 2015 +0200
committer	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Mon Nov 02 10:42:44 2015 +0900
tree	8eec31dd5661c7d820b97af61a8290123ccb6d24
parent	9dc66f4b2f65666d26ca658a020fabf134584c09 [diff] [blame]