mbed TLS (PolarSSL) -- remote code execution

Simon Butcher reports:

When the truncated HMAC extension is enabled and CBC is used,
sending a malicious application packet can be used to selectively
corrupt 6 bytes on the peer’s heap, potentially leading to a
crash or remote code execution. This can be triggered remotely
from either side in both TLS and DTLS.
When RSASSA-PSS signature verification is enabled, sending a
maliciously constructed certificate chain can be used to cause a
buffer overflow on the peer’s stack, potentially leading to crash
or remote code execution. This can be triggered remotely from
either side in both TLS and DTLS.