Better checking for reading over buffer boundaries (Partial cherry picked from commit 535e97dbab8cf34bb1e487f0f0f169a04eb9921f)

commit: 7261cbaa91da669512bcc2611f1a3bcee5ffcba8 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Wed Jan 16 12:39:54 2013 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Jan 16 12:44:01 2013 +0100
tree: 95c372609e73829ea598fb761e29cf7e4385613b
parent: 087e0379c5619d6fc9e366b5288dd94b49b68029 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 587f686..8931237 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -7,6 +7,7 @@
    * mpi_add_abs() now correctly handles adding short numbers to long numbers
      with carry rollover
    * Moved mpi_inv_mod() outside POLARSSL_GENPRIME
+   * Prevent reading over buffer boundaries on X509 certificate parsing
 
 Security
    * Fixed potential memory zeroization on miscrafted RSA key (found by Eloi
commit	7261cbaa91da669512bcc2611f1a3bcee5ffcba8	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Wed Jan 16 12:39:54 2013 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Jan 16 12:44:01 2013 +0100
tree	95c372609e73829ea598fb761e29cf7e4385613b
parent	087e0379c5619d6fc9e366b5288dd94b49b68029 [diff] [blame]