mbedtls/library
Manuel Pégourié-Gonnard 58fb49531d Fix potential buffer overflow in mpi_read_string()
Found by Guido Vranken.

Two possible integer overflows (during << 2 or addition in BITS_TO_LIMB())
could result in far too few memory to be allocated, then overflowing the
buffer in the subsequent for loop.

Both integer overflows happen when slen is close to or greater than
SIZE_T_MAX >> 2 (ie 2^30 on a 32 bit system).

Note: one could also avoid those overflows by changing BITS_TO_LIMB(s << 2) to
CHARS_TO_LIMB(s >> 1) but the solution implemented looks more robust with
respect to future code changes.
2015-09-28 15:59:54 +02:00
..
.gitignore Split libs with make + general make cleanups 2015-06-25 10:59:56 +02:00
aes.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
aesni.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
arc4.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
asn1parse.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
asn1write.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
base64.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
bignum.c Fix potential buffer overflow in mpi_read_string() 2015-09-28 15:59:54 +02:00
blowfish.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
camellia.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ccm.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
certs.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
cipher.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
cipher_wrap.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
CMakeLists.txt Bump version to 2.1.1 2015-09-17 11:58:45 +02:00
ctr_drbg.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
debug.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
des.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
dhm.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ecdh.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ecdsa.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ecp.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ecp_curves.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
entropy.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
entropy_poll.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
error.c Clean up error codes 2015-09-08 11:21:21 +02:00
gcm.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
havege.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
hmac_drbg.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
Makefile Fix error when loading libmbedtls.so 2015-08-10 10:17:32 +02:00
md.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
md2.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
md4.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
md5.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
md_wrap.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
memory_buffer_alloc.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
net.c FIX: compiler warning with recvfrom on 64-bit 2015-09-09 08:49:48 -07:00
oid.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
padlock.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pem.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pk.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pk_wrap.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkcs5.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkcs11.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkcs12.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkparse.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
pkwrite.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
platform.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ripemd160.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
rsa.c Add counter-measure against RSA-CRT attack 2015-09-08 13:39:29 +02:00
sha1.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
sha256.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
sha512.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_cache.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_ciphersuites.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_cli.c Fix possible client crash on API misuse 2015-09-07 12:27:24 +02:00
ssl_cookie.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_srv.c Fix bug in server parsing point formats extension 2015-09-16 11:32:18 +02:00
ssl_ticket.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
ssl_tls.c Merge 'development' into iotssl-411-port-reuse 2015-09-16 15:25:53 +01:00
threading.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
timing.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
version.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
version_features.c Update generated file 2015-09-09 11:50:00 +02:00
x509.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509_create.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509_crl.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509_crt.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509_csr.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509write_crt.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
x509write_csr.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00
xtea.c Change main license to Apache 2.0 2015-09-04 14:21:07 +02:00