Fix location of ChangeLog entry This one was meant to be in the security section, must have been moved while resolving a merge conflict.

commit: 89306daef547e57f9cfd937410a71d9b5c688a91 [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Jun 08 20:42:33 2017 +0200
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Jun 08 20:42:33 2017 +0200
tree: 469c8115aa379f196fe8635ba5e887dbdf596fb4
parent: e0cb1cd68bd69d32696107c5bc4de2ebd7a4069e [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 4af72cf..2af76a9 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -8,6 +8,9 @@
      https://arxiv.org/abs/1702.08719v2.
      Found and fix proposed by Michael Schwarz, Samuel Weiser, Daniel Gruss,
      Clémentine Maurice and Stefan Mangard.
+   * Wipe stack buffers in RSA private key operations
+     (rsa_rsaes_pkcs1_v15_decrypt(), rsa_rsaes_oaep_decrypt).
+     Found by Laurent Simon.
    * Tighten ASN.1 parsing of RSA PKCS#1 v1.5 signatures, to avoid a
      potential Bleichenbacher-style attack.
    * Tighten parsing of RSA PKCS#1 v1.5 signatures, to avoid a
@@ -16,9 +19,6 @@
 Bugfix
    * Fix insufficient support for signature-hash-algorithm extension,
      resulting in compatibility problems with Chrome. Found by hfloyrd. #823
-   * Wipe stack buffers in RSA private key operations
-     (rsa_rsaes_pkcs1_v15_decrypt(), rsa_rsaes_oaep_decrypt).
-     Found by Laurent Simon.
    * Accept empty trusted CA chain in authentication mode
      SSL_VERIFY_OPTIONAL. Fixes #864. Found by jethrogb.
    * Fix implementation of ssl_parse_certificate
commit	89306daef547e57f9cfd937410a71d9b5c688a91	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Jun 08 20:42:33 2017 +0200
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Jun 08 20:42:33 2017 +0200
tree	469c8115aa379f196fe8635ba5e887dbdf596fb4
parent	e0cb1cd68bd69d32696107c5bc4de2ebd7a4069e [diff] [blame]