CVE-2013-5914 Information

Description

Buffer overflow in the ssl_read_record function in ssl_tls.c in PolarSSL before 1.1.8 when using TLS 1.1 might allow remote attackers to execute arbitrary code via a long packet.

Reference

http://www.debian.org/security/2013/dsa-2782 https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2013-04