Add precision about exploitability in ChangeLog

Also fix some whitespace while at it.
This commit is contained in:
Manuel Pégourié-Gonnard 2016-02-11 10:35:13 +01:00 committed by Simon Butcher
parent e43b81ae68
commit 8ddc93f07a

View file

@ -10,6 +10,7 @@ Security
required by PKCS1 v2.2
* Fix potential integer overflow to buffer overflow in
mbedtls_rsa_rsaes_pkcs1_v15_encrypt and mbedtls_rsa_rsaes_oaep_encrypt
(not triggerable remotely in (D)TLS).
Bugfix
* Fix bug in mbedtls_mpi_add_mpi() that caused wrong results when the three