lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-12-12 14:21:20 +03:00
Code Activity

Merge pull request #9690 from valeriosetti/fix-pk-write-buffer-overrun

Browse Source 
pkwrite: fix buffer overrun
This commit is contained in:
Gilles Peskine
2024-10-16 12:00:52 +00:00
committed by GitHub
parent 51287b3be5 50d7579dd1
commit 4e4647a4e7
6 changed files with 58 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
ChangeLog.d/9690.txt Normal file
View File

@@ -0,0 +1,8 @@
Security
* Fix a buffer underrun in mbedtls_pk_write_key_der() when
called on an opaque key, MBEDTLS_USE_PSA_CRYPTO is enabled,
and the output buffer is smaller than the actual output.
Fix a related buffer underrun in mbedtls_pk_write_key_pem()
when called on an opaque RSA key, MBEDTLS_USE_PSA_CRYPTO is enabled
and MBEDTLS_MPI_MAX_SIZE is smaller than needed for a 4096-bit RSA key.
CVE-2024-49195