Janos Follath 87c980749d Fix buffer overread in mbedtls_x509_get_time() ...

A heap overread might happen when parsing malformed certificates.
Reported by Peng Li and Yueh-Hsun Lin.

Refactoring the parsing fixes the problem. This commit applies the
relevant part of the OpenVPN contribution applied to mbed TLS 1.3
in commit 17da9dd829.

2017-02-28 14:23:12 +00:00

29 KiB

Raw Blame History

View Raw