yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-25 15:15:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3014 from mpg/fix-attribution-ecdsa-inc

Browse Source 
[2.16] Fix contributor names in ChangeLog
This commit is contained in:
Janos Follath 2020-01-29 14:07:17 +00:00 committed by GitHub
commit 1f10f2e282
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
ChangeLog
View File

@ -6,15 +6,13 @@ Bugfix
* Allow loading symlinked certificates. Fixes #3005. Reported and fixed
by Jonathan Bennett <JBennett@incomsystems.biz> via #3008.
= mbed TLS 2.16.5 branch released xxxx-xx-xx
Security
* Fix potential memory overread when performing an ECDSA signature
operation. The overread only happens with cryptographically low
probability (of the order of 2^-n where n is the bitsize of the curve)
unless the RNG is broken, and could result in information disclosure or
denial of service (application crash or extra resource consumption).
Reported by Peter and Auke (found using static analysis).
Found by Auke Zeilstra and Peter Schwabe, using static analysis.
= mbed TLS 2.16.4 branch released 2020-01-15