Same ciphersuite validation in server and client hello

commit: 0acbd7df03f0018607b2085e588712afd2d9dfbc [log] [tgz]
author: Mohammad Azim Khan <Azim.Khan@arm.com> Wed Apr 18 19:35:00 2018 +0100
committer: Mohammad Azim Khan <Azim.Khan@arm.com> Fri Apr 20 19:58:37 2018 +0100
tree: 6cfb309640ad6f79285aef64bf688528c3fecfe4
parent: 8bce3685f576e7a5b97c5098e9bef6a694ec357b [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 4be7ec4..98da626 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -39,6 +39,8 @@
    * Fix buffer length assertions in the ssl_parse_certificate_request()
      function which leads to a potential one byte overread of the message
      buffer.
+   * Fix cipher suite validation in ssl_parse_server_hello() by performing same
+     checks as performed in ssl_write_client_hello().
 
 Changes
    * Support cmake build where Mbed TLS is a subproject. Fix
commit	0acbd7df03f0018607b2085e588712afd2d9dfbc	[log] [tgz]
author	Mohammad Azim Khan <Azim.Khan@arm.com>	Wed Apr 18 19:35:00 2018 +0100
committer	Mohammad Azim Khan <Azim.Khan@arm.com>	Fri Apr 20 19:58:37 2018 +0100
tree	6cfb309640ad6f79285aef64bf688528c3fecfe4
parent	8bce3685f576e7a5b97c5098e9bef6a694ec357b [diff] [blame]