Merge pull request #1071 from gilles-peskine-arm/ssl_decrypt_stream_short_buffer

Fix buffer overread in mbedtls_ssl_decrypt_buf with stream cipher
2025-08-08 17:42:09 +03:00 · 2023-09-22 11:43:03 +02:00
parent 7641667abf faf0b8604a
commit 193f94276e
8 changed files with 806 additions and 615 deletions
--- a/ChangeLog.d/ssl_decrypt_buf-short_record.txt
+++ b/ChangeLog.d/ssl_decrypt_buf-short_record.txt
@@ -0,0 +1,3 @@
+Security
+   * Fix a buffer overread when parsing short TLS application data records in
+     null-cipher cipher suites. Credit to OSS-Fuzz.