mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-25 16:05:43 +01:00
Changelog entry
This commit is contained in:
parent
03bac448db
commit
b7a18c0498
@ -15,6 +15,11 @@ Security
|
||||
where an optional signature algorithms list is expected in the cases of
|
||||
the signature algorithms section being too short. In the debug builds
|
||||
the overread data is printed to the standard output.
|
||||
* Fix a client-side bug in the validation of the server's ciphersuite choice
|
||||
potentially leading to the client accepting a ciphersuite it didn't offer
|
||||
or one that cannot be used with the (D)TLS version chosen by the server.
|
||||
This may lead to corruption of internal data structures for some
|
||||
configurations.
|
||||
|
||||
Features
|
||||
* Add option MBEDTLS_AES_FEWER_TABLES to dynamically compute 3/4 of the AES tables
|
||||
@ -64,8 +69,6 @@ Bugfix
|
||||
* Fix buffer length assertions in the ssl_parse_certificate_request()
|
||||
function which leads to a potential one byte overread of the message
|
||||
buffer.
|
||||
* Fix cipher suite validation in ssl_parse_server_hello() by performing same
|
||||
checks as performed in ssl_write_client_hello().
|
||||
|
||||
Changes
|
||||
* Remove some redundant code in bignum.c. Contributed by Alexey Skalozub.
|
||||
|
Loading…
Reference in New Issue
Block a user