Fix potential overflow in base64_encode

commit: 48ec2c7b5e77b5c7e0057d1218eb7ef4f989b87e [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Wed Sep 30 16:30:28 2015 +0200
committer: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Thu Oct 01 10:07:28 2015 +0200
tree: 336979053f2edbaa293592624950a594b968aa72
parent: 5aff029f9d2b8db78da64655c6808a1dfac6f64f [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 14ae034..651ee4f 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -18,6 +18,9 @@
    * Fix potential double-free if ssl_set_psk() is called repeatedly on
      the same ssl_context object and some memory allocations fail.
      Found by Guido Vranken. Can not be forced remotely.
+   * Fix possible heap buffer overflow in base64_encode() when the input
+     buffer is 512MB or larger on 32-bit platforms.
+     Found by Guido Vranken. Not trigerrable remotely in TLS.
 
 = mbed TLS 1.3.13 reladsed 2015-09-17
commit	48ec2c7b5e77b5c7e0057d1218eb7ef4f989b87e	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Wed Sep 30 16:30:28 2015 +0200
committer	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Thu Oct 01 10:07:28 2015 +0200
tree	336979053f2edbaa293592624950a594b968aa72
parent	5aff029f9d2b8db78da64655c6808a1dfac6f64f [diff] [blame]