Suyu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-01-04 13:45:05 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge remote-tracking branch 'upstream-restricted/pr/441' into development-restricted

Browse source
This commit is contained in:
Gilles Peskine 2018-01-23 00:59:51 +01:00
commit 41b40e6463
2 changed files with 28 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

3
ChangeLog
View file

@ -38,6 +38,9 @@ Security
corrupt 6 bytes on the peer's heap, potentially leading to crash or
remote code execution. This can be triggered remotely from either
side in both TLS and DTLS.
* Fix a potential heap buffer overread in ALPN extension parsing
(server-side). Could result in application crash, but only if an ALPN
name larger than 16 bytes had been configured on the server.
Features
* Allow comments in test data files.