yuzu-emu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-11-22 11:45:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Clarify ChangeLog for #569

Browse Source
This commit is contained in:
Simon Butcher 2017-02-28 18:47:27 +00:00
parent 7dadc2f259
commit 71e9d58dc2
1 changed files with 2 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
ChangeLog
View File

@ -11,14 +11,11 @@ Security
* Removed MD5 from the allowed hash algorithms for CertificateRequest and
CertificateVerify messages, to prevent SLOTH attacks against TLS 1.2.
Introduced by interoperability fix for #513.
Security
* Fixed a bug that caused freeing a buffer that was allocated on the stack,
when verifying the validity of a key on secp224k1. This could be
triggered remotely for example with a maliciously constructed certificate
and might have led to remote code execution on some exotic embedded
platforms. Reported independently by rongsaws and Regina Wilson.
CVE-2017-2784
and potentially could lead to remote code execution on some platforms.
Reported independently by rongsaws and Regina Wilson. #569 CVE-2017-2784
Bugfix
* Fix output certificate verification flags set by x509_crt_verify_top() when