mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2024-12-28 15:17:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Improve description of who is affected

Browse Source 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2024-06-27 10:59:55 +02:00
parent db81d7efb0
commit a9e7ac9811
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog.d/ecdsa-conversion-overflow.txt
View File

@ -1,4 +1,6 @@
Security Security
* Fix a stack buffer overflow in mbedtls_ecdsa_der_to_raw() and * Fix a stack buffer overflow in mbedtls_ecdsa_der_to_raw() and
mbedtls_ecdsa_raw_to_der() when curve_bits is larger than the mbedtls_ecdsa_raw_to_der() when the bits parameter is larger than the
largest supported curve. largest supported curve. In some configurations with PSA disabled,
all values of bits are affected. This never happens in internal library
calls, but can affect applications that call these functions directly.