From a16d684df35c86420b63a55195fc28c2b3ca330f Mon Sep 17 00:00:00 2001 From: Andres AG Date: Wed, 7 Sep 2016 11:09:44 +0100 Subject: [PATCH] Add test for bounds in X509 DER write funcs --- ChangeLog | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ChangeLog b/ChangeLog index 771f7c50c..675f18330 100644 --- a/ChangeLog +++ b/ChangeLog @@ -13,8 +13,8 @@ Security issue cannot be triggered remotely. (found by Jethro Beekman) * Fix potential stack corruption in mbedtls_x509write_crt_der() and mbedtls_x509write_csr_der() when the signature is copied to the buffer - without checking whether there is enough space in the destination. It is - not triggerable remotely in SSL/TLS. + without checking whether there is enough space in the destination. The + issue cannot be triggered remotely. (found by Jethro Beekman) Bugfix * Fix an issue that caused valid certificates being rejected whenever an