Fix integer overflow mbedtls_base64_decode() Fix potential integer overflows in the function mbedtls_base64_decode(). This overflow would mainly be exploitable in 32-bit systems and could cause buffer bound checks to be bypassed.

commit: 4623d83c6f5549031f72bc25b085af6eb79b28f4 [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Wed Jan 18 17:21:03 2017 +0000
committer: Simon Butcher <simon.butcher@arm.com> Wed Feb 15 23:31:07 2017 +0200
tree: edb75cd2bac3fb0872c5bccbfca6957ecd4b707a
parent: 6a54336897e5150b95c64bf1eea122cdd9556a9c [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index fc240c3..76cd298 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -27,6 +27,8 @@
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
    * Fixed potential arithmetic overflow in mbedtls_md2_update() that could
      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
+   * Fixed potential arithmetic overflow in mbedtls_base64_decode() that could
+     cause buffer bound checks to be bypassed. Found by Eyal Itkin.
 
 = mbed TLS 2.4.1 branch released 2016-12-13
commit	4623d83c6f5549031f72bc25b085af6eb79b28f4	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Wed Jan 18 17:21:03 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Wed Feb 15 23:31:07 2017 +0200
tree	edb75cd2bac3fb0872c5bccbfca6957ecd4b707a
parent	6a54336897e5150b95c64bf1eea122cdd9556a9c [diff] [blame]