[Buildroot] [PATCH] polarssl: security bump to version 1.2.18

Peter Korsgaard peter at korsgaard.com
Thu Nov 12 21:41:38 UTC 2015


>>>>> "Gustavo" == Gustavo Zacarias <gustavo at zacarias.com.ar> writes:

 > Fixes a potential heap corruption on Windows when
 > mbedtls_x509_crt_parse_path() is passed a path longer than 2GB. This
 > cannot be triggered remotely. Found by Guido Vranken, Intelworks.

 > Fixes a potential buffer overflow in some asn1_write_xxx() functions.
 > This cannot be triggered remotely unless you create X.509 certificates
 > based on untrusted input or write keys of untrusted origin. Found by
 > Guido Vranken, Intelworks.

 > The X509 max_pathlen constraint was not enforced on intermediate
 > certificates. Found by Nicholas Wilson, and fix and tests provided by
 > Janos Follath.

 > Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>

Committed, thanks.

-- 
Bye, Peter Korsgaard



More information about the buildroot mailing list