[Buildroot] [PATCH 1/1] package/mbedtls: security bump to version 2.6.10
peter at korsgaard.com
Fri Mar 19 22:09:20 UTC 2021
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
> - Fix a buffer overflow in mbedtls_mpi_sub_abs() when calculating
> |A| - |B| where |B| is larger than |A| and has more limbs (so the
> function should return MBEDTLS_ERR_MPI_NEGATIVE_VALUE). Only
> applications calling mbedtls_mpi_sub_abs() directly are affected:
> all calls inside the library were safe since this function is
> only called with |A| >= |B|.
> - Fix an errorneous estimation for an internal buffer in
> mbedtls_pk_write_key_pem(). If MBEDTLS_MPI_MAX_SIZE is set to an odd
> value the function might fail to write a private RSA keys of the
> largest supported size.
> - Fix a stack buffer overflow with mbedtls_net_poll() and
> mbedtls_net_recv_timeout() when given a file descriptor that is
> beyond FD_SETSIZE.
> - Guard against strong local side channel attack against base64 tables
> by making access aceess to them use constant flow code.
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Committed to 2020.02.x, 2020.11.x and 2021.02.x, thanks.
Bye, Peter Korsgaard
More information about the buildroot