Fix possible buffer overflow with PSK

commit: b2bf5a1bbbf3652881ed55181d1f68dc6ea75dfe [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Mar 25 16:28:12 2014 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Mar 26 12:58:50 2014 +0100
tree: 1fc0e4a87ca0230b25845839f59d2d0decf48fea
parent: fdddac90a6f3b0580d0636d1a57ceba4fc2988cb [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index e57b5a4..5beeb35 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -25,10 +25,11 @@
 
 Security
    * Forbid change of server certificate during renegotiation to prevent
-     "triple handshake" attack when authentication mode is optional (the
+     "triple handshake" attack when authentication mode is 'optional' (the
      attack was already impossible when authentication is required).
    * Check notBefore timestamp of certificates and CRLs from the future.
    * Forbid sequence number wrapping
+   * Fix possible buffer overflow with overlong PSK
 
 Bugfix
    * ecp_gen_keypair() does more tries to prevent failure because of
commit	b2bf5a1bbbf3652881ed55181d1f68dc6ea75dfe	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Mar 25 16:28:12 2014 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Mar 26 12:58:50 2014 +0100
tree	1fc0e4a87ca0230b25845839f59d2d0decf48fea
parent	fdddac90a6f3b0580d0636d1a57ceba4fc2988cb [diff] [blame]