TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / aa4114910a535e92b661504706c5063bff80e333^! / . / ChangeLog
commitaa4114910a535e92b661504706c5063bff80e333[log] [tgz]
authorSimon Butcher <simon.butcher@arm.com>Wed Dec 23 18:52:18 2015 +0000
committerSimon Butcher <simon.butcher@arm.com>Wed Dec 23 18:52:18 2015 +0000
treebe875c005f07b62bf23725f41a3c1a0e3769b04a
parent35ea92dbc614d48be5851b81b0c7618652530373 [diff] [blame]
parent2bbfee3cbcf1b2f8319ba2356ad03d30c7e74be9 [diff] [blame]
Merge 'iotssl-558-2.1-md5-tls-sigs-restricted'

diff --git a/ChangeLog b/ChangeLog
index 7681015..459dabc 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -3,9 +3,12 @@
 = mbed TLS 2.1.4 released 2015-12-xx
 
 Security
+
    * Fix potential double free when mbedtls_asn1_store_named_data() fails to
      allocate memory. Only used for certificate generation, not triggerable
      remotely in SSL/TLS. Found by RafaƂ Przywara. #367
+   * Disable MD5 handshake signatures in TLS 1.2 by default
+     (Reported by Karthikeyan Bhargavan and Gaëtan Leurent.)
 
 Bugfix
    * Fix over-restrictive length limit in GCM. Found by Andreas-N. #362