commit | 91c61bc4fd815f689b499f849b3baf828c0f8490 | [log] [tgz] |
---|---|---|
author | Paul Bakker <p.j.bakker@polarssl.org> | Wed Mar 26 14:06:55 2014 +0100 |
committer | Paul Bakker <p.j.bakker@polarssl.org> | Wed Mar 26 15:14:20 2014 +0100 |
tree | 4cbd9635488cdb85cf32007632d532d4b30001c6 | |
parent | 76b8ab73cd09459805f76ac01ec3fec984d6f8d0 [diff] [blame] |
Further tightened the padlen check to prevent underflow / overflow
diff --git a/ChangeLog b/ChangeLog index f633391..cf5897b 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -32,6 +32,8 @@ * Check notBefore timestamp of certificates and CRLs from the future. * Forbid sequence number wrapping * Fixed possible buffer overflow with overlong PSK + * Possible remotely-triggered out-of-bounds memory access fixed (found by + TrustInSoft) Bugfix * ecp_gen_keypair() does more tries to prevent failure because of