mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-27 01:44:21 +01:00
Add ChangeLog entry
This commit is contained in:
parent
0401a3d888
commit
b9c09af596
@ -3,6 +3,11 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
|||||||
= mbed TLS 1.3.x branch released xxxx-xx-xx
|
= mbed TLS 1.3.x branch released xxxx-xx-xx
|
||||||
|
|
||||||
Security
|
Security
|
||||||
|
* Fixed unlimited overread of heap-based buffer in ssl_read().
|
||||||
|
The issue could only happen client-side with renegotiation enabled.
|
||||||
|
Could result in DoS (application crash) or information leak
|
||||||
|
(if the application layer sent data read from ssl_read()
|
||||||
|
back to the server or to a third party). Can be triggered remotely.
|
||||||
* Add exponent blinding to RSA private operations as a countermeasure
|
* Add exponent blinding to RSA private operations as a countermeasure
|
||||||
against side-channel attacks like the cache attack described in
|
against side-channel attacks like the cache attack described in
|
||||||
https://arxiv.org/abs/1702.08719v2.
|
https://arxiv.org/abs/1702.08719v2.
|
||||||
|
Loading…
Reference in New Issue
Block a user