[Buildroot] [PATCH 1/1] package/mbedtls: security bump to version 2.6.10

Peter Korsgaard peter at korsgaard.com
Fri Mar 19 22:09:20 UTC 2021


>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:

 > - Fix a buffer overflow in mbedtls_mpi_sub_abs() when calculating
 >   |A| - |B| where |B| is larger than |A| and has more limbs (so the
 >   function should return MBEDTLS_ERR_MPI_NEGATIVE_VALUE). Only
 >   applications calling mbedtls_mpi_sub_abs() directly are affected:
 >   all calls inside the library were safe since this function is
 >   only called with |A| >= |B|.
 > - Fix an errorneous estimation for an internal buffer in
 >   mbedtls_pk_write_key_pem(). If MBEDTLS_MPI_MAX_SIZE is set to an odd
 >   value the function might fail to write a private RSA keys of the
 >   largest supported size.
 > - Fix a stack buffer overflow with mbedtls_net_poll() and
 >   mbedtls_net_recv_timeout() when given a file descriptor that is
 >   beyond FD_SETSIZE.
 > - Guard against strong local side channel attack against base64 tables
 >   by making access aceess to them use constant flow code.

 > https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.10

 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>

Committed to 2020.02.x, 2020.11.x and 2021.02.x, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list