From d1692ee07a32ea44ad53b77055bea50664fc8bdc Mon Sep 17 00:00:00 2001 From: Janos Follath Date: Wed, 19 Feb 2020 11:23:55 +0000 Subject: [PATCH] Update ChangeLog for crypto changes from a591985c62a9354db3027b4895c24377712b9620 Add ChangeLog entries for changes brought by the submodule update in the previous commit. --- ChangeLog | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/ChangeLog b/ChangeLog index 4bbf8f16f..d234de02e 100644 --- a/ChangeLog +++ b/ChangeLog @@ -44,6 +44,11 @@ Bugfix contributed by apple-ihack-geek in #2663. * Fix a possible error code mangling in psa_mac_verify_finish() when a cryptographic accelerator fails. ARMmbed/mbed-crypto#345 + * Fix a bug in mbedtls_pk_parse_key() that would cause it to accept some + RSA keys that would later be rejected by functions expecting private + keys. Found by Catena cyber using oss-fuzz (issue 20467). + * Fix a bug in mbedtls_pk_parse_key() that would cause it to + accept some RSA keys with invalid values by silently fixing those values. = mbed TLS 2.20.0 branch released 2020-01-15