« Changelog History


mbedTLS v1.1.8 Release Notes

Release Date: 2013-10-01 // over 10 years ago

  • 🛠 Bugfix

    • Fixed potential memory leak when failing to resume a session
    • Fixed potential file descriptor leaks

    🔒 Security

    • Potential buffer-overflow for ssl_read_record() (independently found by both TrustInSoft and Paul Brodeur of Leviathan Security Group)
    • Potential negative value misinterpretation in load_file()
    • Potential heap buffer overflow on large hostname setting