Fix potential overflow in base64_encode

2026-01-04 13:45:05 +01:00 · 2015-09-30 16:30:28 +02:00 · 2015-09-30 16:30:28 +02:00 · 0aa45c209a
commit 0aa45c209a
parent 50a739f8c3
3 changed files with 16 additions and 5 deletions
--- a/7
+++ b/7
@ -2,6 +2,13 @@ mbed TLS ChangeLog (Sorted per branch, date)

 = mbed TLS 2.1.1 released 2015-09-17

+Security
+   * Fix possible heap buffer overflow in base64_encoded() when the input
+     buffer is 512MB or larger on 32-bit platforms.
+     Found by Guido Vranken. Not trigerrable remotely in TLS.
+
+= mbed TLS 2.1.1 released 2015-09-17
+
 Security
   * Add countermeasure against Lenstra's RSA-CRT attack for PKCS#1 v1.5
     signatures. (Found by Florian Weimer, Red Hat.)