Add test for bounds in X509 DER write funcs

commit: f5276098490c3711810257df834aaacd467b9611 [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Wed Sep 07 11:09:44 2016 +0100
committer: Simon Butcher <simon.butcher@arm.com> Thu Oct 13 12:45:08 2016 +0100
tree: 0843e64e7444f9483b62d798c3b0142429f2f388
parent: 1e5de32473f6c35fdb2af04424f2ee3bee3415fc [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 72faf57..4af1675 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -5,8 +5,8 @@
 Security
    * Fix potential stack corruption in mbedtls_x509write_crt_der() and
      mbedtls_x509write_csr_der() when the signature is copied to the buffer
-     without checking whether there is enough space in the destination. It is
-     not triggerable remotely in SSL/TLS.
+     without checking whether there is enough space in the destination. The
+     issue cannot be triggered remotely. (found by Jethro Beekman)
 
 Bugfix
    * Fix an issue that caused valid certificates being rejected whenever an
commit	f5276098490c3711810257df834aaacd467b9611	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Wed Sep 07 11:09:44 2016 +0100
committer	Simon Butcher <simon.butcher@arm.com>	Thu Oct 13 12:45:08 2016 +0100
tree	0843e64e7444f9483b62d798c3b0142429f2f388
parent	1e5de32473f6c35fdb2af04424f2ee3bee3415fc [diff] [blame]