Add detail to ChangeLog for SLOTH fix

This commit is contained in:
Simon Butcher 2017-02-05 16:48:47 +00:00
parent a29c5e9e66
commit 0621b1fbb0

View file

@ -5,6 +5,7 @@ mbed TLS ChangeLog (Sorted per branch, date)
Security Security
* Removed MD5 from the allowed hash algorithms for CertificateRequest and * Removed MD5 from the allowed hash algorithms for CertificateRequest and
CertificateVerify messages, to prevent SLOTH attacks against TLS 1.2. CertificateVerify messages, to prevent SLOTH attacks against TLS 1.2.
Introduced by interoperability fix for #513.
Bugfix Bugfix
* Fix the redefinition of macro ssl_set_bio to an undefined symbol * Fix the redefinition of macro ssl_set_bio to an undefined symbol