mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-29 08:54:23 +01:00
Merge pull request #3014 from mpg/fix-attribution-ecdsa-inc
[2.16] Fix contributor names in ChangeLog
This commit is contained in:
commit
1f10f2e282
@ -6,15 +6,13 @@ Bugfix
|
|||||||
* Allow loading symlinked certificates. Fixes #3005. Reported and fixed
|
* Allow loading symlinked certificates. Fixes #3005. Reported and fixed
|
||||||
by Jonathan Bennett <JBennett@incomsystems.biz> via #3008.
|
by Jonathan Bennett <JBennett@incomsystems.biz> via #3008.
|
||||||
|
|
||||||
= mbed TLS 2.16.5 branch released xxxx-xx-xx
|
|
||||||
|
|
||||||
Security
|
Security
|
||||||
* Fix potential memory overread when performing an ECDSA signature
|
* Fix potential memory overread when performing an ECDSA signature
|
||||||
operation. The overread only happens with cryptographically low
|
operation. The overread only happens with cryptographically low
|
||||||
probability (of the order of 2^-n where n is the bitsize of the curve)
|
probability (of the order of 2^-n where n is the bitsize of the curve)
|
||||||
unless the RNG is broken, and could result in information disclosure or
|
unless the RNG is broken, and could result in information disclosure or
|
||||||
denial of service (application crash or extra resource consumption).
|
denial of service (application crash or extra resource consumption).
|
||||||
Reported by Peter and Auke (found using static analysis).
|
Found by Auke Zeilstra and Peter Schwabe, using static analysis.
|
||||||
|
|
||||||
= mbed TLS 2.16.4 branch released 2020-01-15
|
= mbed TLS 2.16.4 branch released 2020-01-15
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user