Update ChangeLog for crypto changes from 799ae77f90
Add ChangeLog entries for changes brought by the submodule update in the previous commit.
This commit is contained in:
Gilles Peskine
parent
799ae77f90
commit
25a5c09fbb
1 changed files with 7 additions and 0 deletions
|
|
@ -17,6 +17,11 @@ Security
|
||||||
unless the RNG is broken, and could result in information disclosure or
|
unless the RNG is broken, and could result in information disclosure or
|
||||||
denial of service (application crash or extra resource consumption).
|
denial of service (application crash or extra resource consumption).
|
||||||
Found by Auke Zeilstra and Peter Schwabe, using static analysis.
|
Found by Auke Zeilstra and Peter Schwabe, using static analysis.
|
||||||
|
* To avoid a side channel vulnerability when parsing an RSA private key,
|
||||||
|
read all the CRT parameters from the DER structure rather than
|
||||||
|
reconstructing them. Found by Alejandro Cabrera Aldaya and Billy Bob
|
||||||
|
Brumley. Reported and fix contributed by Jack Lloyd.
|
||||||
|
ARMmbed/mbed-crypto#352
|
||||||
|
|
||||||
Features
|
Features
|
||||||
* The new build option MBEDTLS_SHA512_NO_SHA384 allows building SHA-512
|
* The new build option MBEDTLS_SHA512_NO_SHA384 allows building SHA-512
|
||||||
|
|
@ -37,6 +42,8 @@ Bugfix
|
||||||
Jack Lloyd in #2859. Fix submitted by jiblime in #2963.
|
Jack Lloyd in #2859. Fix submitted by jiblime in #2963.
|
||||||
* Fix some false-positive uninitialized variable warnings in X.509. Fix
|
* Fix some false-positive uninitialized variable warnings in X.509. Fix
|
||||||
contributed by apple-ihack-geek in #2663.
|
contributed by apple-ihack-geek in #2663.
|
||||||
|
* Fix a possible error code mangling in psa_mac_verify_finish() when
|
||||||
|
a cryptographic accelerator fails. ARMmbed/mbed-crypto#345
|
||||||
|
|
||||||
= mbed TLS 2.20.0 branch released 2020-01-15
|
= mbed TLS 2.20.0 branch released 2020-01-15
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue