yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-22 11:55:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update ChangeLog

Browse Source
This commit is contained in:
Hanno Becker 2017-11-29 16:57:06 +00:00
parent 1df4923eb1
commit 004198adb3
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
ChangeLog
View File

@ -9,14 +9,16 @@ Security
corrupt 6 bytes on the peer's heap, potentially leading to crash or
remote code execution. This can be triggered remotely from either
side in both TLS and DTLS.
* Fix implementation of truncated HMAC extension leading to
compatibility problems with non Mbed TLS peers and allowing
an offline 2^80 brute force attack on the HMAC key of a single,
uninterrupted (excluding session resumption) connection.
Found by Andreas Walz.
Features
* Allow comments in test data files.
Bugfix
* Fix wrong implementation of truncated HMAC extension leading to
compatibility problems with peers not running Mbed TLS. Found by
Andreas Walz.
* Fix ssl_parse_record_header() to silently discard invalid DTLS records
as recommended in RFC 6347 Section 4.1.2.7.
* Fix memory leak in mbedtls_ssl_set_hostname() when called multiple times.