Merge branch 'mbedtls-1.3'

This commit is contained in:
Simon Butcher 2017-03-10 20:38:47 +00:00
commit 98864d5c0b

View file

@ -17,7 +17,8 @@ Security
when verifying the validity of a key on secp224k1. This could be when verifying the validity of a key on secp224k1. This could be
triggered remotely for example with a maliciously constructed certificate triggered remotely for example with a maliciously constructed certificate
and potentially could lead to remote code execution on some platforms. and potentially could lead to remote code execution on some platforms.
Reported independently by rongsaws and Regina Wilson. #569 CVE-2017-2784 Reported independently by rongsaws and Aleksandar Nikolic, Cisco Talos
team. #569 CVE-2017-2784
Bugfix Bugfix
* Fix output certificate verification flags set by x509_crt_verify_top() when * Fix output certificate verification flags set by x509_crt_verify_top() when
@ -49,6 +50,8 @@ Bugfix
* Fix 1 byte buffer overflow in mpi_write_string() when the MPI number to * Fix 1 byte buffer overflow in mpi_write_string() when the MPI number to
write in hexadecimal is negative and requires an odd number of digits. write in hexadecimal is negative and requires an odd number of digits.
Found and fixed by Guido Vranken. Found and fixed by Guido Vranken.
* Fix unlisted DES configuration dependency in some pkparse test cases. Found
by inestlerode. #555
= mbed TLS 1.3.18 branch 2016-10-17 = mbed TLS 1.3.18 branch 2016-10-17