Parse HelloVerifyRequest buffer overread: add changelog entry

commit: 99258ff315783b40a6e903699fa00914952867b1 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Sep 27 14:07:00 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Thu Nov 21 14:18:56 2019 +0100
tree: 933f5d21d614ef582caa42d603317e1ce40e53cd
parent: 2414ce1a5e756acbebe01a7451629c2b0851d3a0 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 1f21f5e..105875e 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -7,6 +7,8 @@
      during certificate extensions parsing. In case of receiving malformed
      input (extensions length field equal to 0), an illegal read of one byte
      beyond the input buffer is made. Found and analyzed by Nathan Crandall.
+   * Fix a potentially remotely exploitable buffer overread in a
+     DTLS client when parsing the Hello Verify Request message.
 
 Bugfix
    * Fix a potential memory leak in mbedtls_ssl_setup() function. An allocation
commit	99258ff315783b40a6e903699fa00914952867b1	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Sep 27 14:07:00 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Thu Nov 21 14:18:56 2019 +0100
tree	933f5d21d614ef582caa42d603317e1ce40e53cd
parent	2414ce1a5e756acbebe01a7451629c2b0851d3a0 [diff] [blame]