Fix buffer overreads in mbedtls_pem_read_buffer()

commit: de6079af8e60fc07ad64747db3e2731388305f53 [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Mon Oct 24 11:23:36 2016 +0100
committer: Simon Butcher <simon.butcher@arm.com> Sat Feb 25 21:25:06 2017 +0000
tree: 4f620cca71dfe843d5165f6ec0f438b77a9f64d6
parent: 562bbb6f6a775dc371a641be7b1bd80812e3ca9f [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 316c5de..80c9c09 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -13,6 +13,9 @@
    * Fix unused variable/function compilation warnings in pem.c and x509_csr.c
      that are reported when building mbed TLS with a config.h that does not
      define POLARSSL_PEM_PARSE_C. Found by omnium21. #562
+   * Fixed multiple buffer overreads in mbedtls_pem_read_buffer() when parsing
+     the input string in pem format to extract the different components. Found
+     by Eyal Itkin.
 
 = mbed TLS 1.3.18 branch 2016-10-17
commit	de6079af8e60fc07ad64747db3e2731388305f53	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Mon Oct 24 11:23:36 2016 +0100
committer	Simon Butcher <simon.butcher@arm.com>	Sat Feb 25 21:25:06 2017 +0000
tree	4f620cca71dfe843d5165f6ec0f438b77a9f64d6
parent	562bbb6f6a775dc371a641be7b1bd80812e3ca9f [diff] [blame]