Andres AG 2e65a54d5a Prevent signed integer overflow in CSR parsing ...

Modify the function mbedtls_x509_csr_parse_der() so that it checks the
parsed CSR version integer before it increments the value. This prevents
a potential signed integer overflow, as these have undefined behaviour
in the C standard.

2017-07-27 15:08:01 +01:00

..

.gitignore

…

aes.c

Export mbedtls_aes_(en/de)crypt to retain for API compatibility

2017-07-27 15:08:01 +01:00

aesni.c

…

arc4.c

…

asn1parse.c

…

asn1write.c

…

base64.c

…

bignum.c

…

blowfish.c

…

camellia.c

…

ccm.c

…

certs.c

Undo API change from SHA1 deprecation

2017-07-27 15:08:01 +01:00

cipher_wrap.c

…

cipher.c

…

cmac.c

…

CMakeLists.txt

…

ctr_drbg.c

…

debug.c

…

des.c

…

dhm.c

…

ecdh.c

…

ecdsa.c

…

ecjpake.c

…

ecp_curves.c

…

ecp.c

…

entropy_poll.c

…

entropy.c

…

error.c

…

gcm.c

…

havege.c

…

hmac_drbg.c

…

Makefile

…

md2.c

…

md4.c

…

md5.c

…

md_wrap.c

…

md.c

…

memory_buffer_alloc.c

…

net_sockets.c

…

oid.c

…

padlock.c

…

pem.c

…

pk_wrap.c

…

pk.c

…

pkcs5.c

…

pkcs11.c

…

pkcs12.c

…

pkparse.c

…

pkwrite.c

…

platform.c

Rename macro SETUP_ALT to SETUP_TEARDOWN_ALT

2017-07-27 15:08:01 +01:00

ripemd160.c

…

rsa.c

…

sha1.c

…

sha256.c

…

sha512.c

…

ssl_cache.c

…

ssl_ciphersuites.c

…

ssl_cli.c

…

ssl_cookie.c

…

ssl_srv.c

…

ssl_ticket.c

…

ssl_tls.c

…

threading.c

…

timing.c

…

version_features.c

Checked names

2017-07-27 15:08:01 +01:00

version.c

…

x509_create.c

…

x509_crl.c

Fix potential integer overflow parsing DER CRL

2017-07-27 15:08:01 +01:00

x509_crt.c

Fix potential integer overflow parsing DER CRT

2017-07-27 15:08:01 +01:00

x509_csr.c

Prevent signed integer overflow in CSR parsing

2017-07-27 15:08:01 +01:00

x509.c

…

x509write_crt.c

…

x509write_csr.c

…

xtea.c

…