diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 27c139b37..a1b9009e1 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h
@@ -1280,7 +1280,7 @@
  * CRIME attack. Before enabling this option, you should examine with care if
  * CRIME or similar exploits may be a applicable to your use case.
  *
- * \note Currently compression can't bu used with DTLS.
+ * \note Currently compression can't be used with DTLS.
  *
  * Used in: library/ssl_tls.c
  *          library/ssl_cli.c
diff --git a/include/mbedtls/error.h b/include/mbedtls/error.h
index 1ffb876bc..81c358e43 100644
--- a/include/mbedtls/error.h
+++ b/include/mbedtls/error.h
@@ -30,7 +30,7 @@
  * Error code layout.
  *
  * Currently we try to keep all error codes within the negative space of 16
- * bytes signed integers to support all platforms (-0x0000 - -0x8000). In
+ * bits signed integers to support all platforms (-0x0001 - -0x7FFF). In
  * addition we'd like to give two layers of information on the error if
  * possible.
  *
@@ -38,7 +38,7 @@
  *
  * 16 bit error code bit-segmentation
  *
- * 1 bit  - Sign bit
+ * 1 bit  - Unused (sign bit)
  * 3 bits - High level module ID
  * 5 bits - Module-dependent error code
  * 7 bits - Low level module errors