From ee649bc91804f581d4298046cf7e16a3f654995c Mon Sep 17 00:00:00 2001 From: David Horstmann Date: Fri, 11 Oct 2024 19:41:59 +0100 Subject: [PATCH] Assemble ChangeLog Signed-off-by: David Horstmann --- ChangeLog | 12 ++++++++++++ ChangeLog.d/fix-pkwrite-buffer-overrun.txt | 9 --------- 2 files changed, 12 insertions(+), 9 deletions(-) delete mode 100644 ChangeLog.d/fix-pkwrite-buffer-overrun.txt diff --git a/ChangeLog b/ChangeLog index 8eb43fe65c..1f792b6bcf 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,5 +1,17 @@ Mbed TLS ChangeLog (Sorted per branch, date) += Mbed TLS x.x.x branch released xxxx-xx-xx + +Security + * Fix a buffer overflow in mbedtls_pk_write_pubkey(), + mbedtls_pk_write_pubkey_der() and mbedtls_pk_write_key_der(). + With MBEDTLS_USE_PSA_CRYPTO turned on, these functions would + write to a location before the start of the output buffer if it was less + than the size of the key being written and also less than + PK_MAX_EC_PUBLIC_KEY_SIZE (for EC public keys) and + PSA_EXPORT_KEY_PAIR_MAX_SIZE (for RSA private keys). + This buffer overflow only occurs for keys with the type MBEDTLS_PK_OPAQUE. + = Mbed TLS 3.6.1 branch released 2024-08-30 API changes diff --git a/ChangeLog.d/fix-pkwrite-buffer-overrun.txt b/ChangeLog.d/fix-pkwrite-buffer-overrun.txt deleted file mode 100644 index 716b11e932..0000000000 --- a/ChangeLog.d/fix-pkwrite-buffer-overrun.txt +++ /dev/null @@ -1,9 +0,0 @@ -Security - * Fix a buffer overflow in mbedtls_pk_write_pubkey(), - mbedtls_pk_write_pubkey_der() and mbedtls_pk_write_key_der(). - With MBEDTLS_USE_PSA_CRYPTO turned on, these functions would - write to a location before the start of the output buffer if it was less - than the size of the key being written and also less than - PK_MAX_EC_PUBLIC_KEY_SIZE (for EC public keys) and - PSA_EXPORT_KEY_PAIR_MAX_SIZE (for RSA private keys). - This buffer overflow only occurs for keys with the type MBEDTLS_PK_OPAQUE.