TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 89e7422a270b627fc1f245daa2d18bbd6d6a2817^! / .
commit89e7422a270b627fc1f245daa2d18bbd6d6a2817[log] [tgz]
authorHanno Becker <hanno.becker@arm.com>Mon Sep 25 10:51:32 2017 +0100
committerManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Mon Mar 05 13:46:10 2018 +0100
treebef18fc2187a7e99ec7e56fda1d38f61281d7a3f
parentdc8751d31eb01fa8e09ceca4e918d92c00bbfad6 [diff]
Add ChangeLog entry for previous security fix

Fixes #825

diff --git a/ChangeLog b/ChangeLog
index 895c4ec..8c9ae8f 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,21 +2,17 @@
 
 = mbed TLS 2.1.11 branch released xxxx-xx-xx
 
-Default behavior changes
-   * The truncated HMAC extension now conforms to RFC 6066. This means
-     that when both sides of a TLS connection negotiate the truncated
-     HMAC extension, Mbed TLS can now interoperate with other
-     compliant implementations, but this breaks interoperability with
-     prior versions of Mbed TLS. To restore the old behavior, enable
-     the (deprecated) option MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT in
-     config.h. Found by Andreas Walz (ivESK, Offenburg University of
-     Applied Sciences).
-
 Security
    * Fix implementation of the truncated HMAC extension. The previous
      implementation allowed an offline 2^80 brute force attack on the
      HMAC key of a single, uninterrupted connection (with no
      resumption of the session).
+   * Fix a bug in the X.509 module potentially leading to a buffer overread
+     during CRT verification or to invalid or omitted checks for certificate
+     validity. The former can be triggered remotely, while the latter requires
+     a non DER-compliant certificate correctly signed by a trusted CA, or a
+     trusted CA with a non DER-compliant certificate. Found by luocm on GitHub.
+     Fixes #825.
 
 Bugfix
    * Fix assembly sequences in bn_mul.h and aesni.c to avoid segmentation
@@ -29,6 +25,16 @@
      daniel in the Mbed TLS forum. #1351
    * Fix Windows x64 builds with the included mbedTLS.sln file. #1347
 
+Default behavior changes
+   * The truncated HMAC extension now conforms to RFC 6066. This means
+     that when both sides of a TLS connection negotiate the truncated
+     HMAC extension, Mbed TLS can now interoperate with other
+     compliant implementations, but this breaks interoperability with
+     prior versions of Mbed TLS. To restore the old behavior, enable
+     the (deprecated) option MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT in
+     config.h. Found by Andreas Walz (ivESK, Offenburg University of
+     Applied Sciences).
+
 = mbed TLS 2.1.10 branch released 2018-02-03
 
 Security