Merge remote-tracking branch 'upstream-restricted/pr/430' into mbedtls-2.1-restricted-proposed

commit: df6f3dd9b03e7193fb8791e20a3d13b222b046d2 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Mar 13 17:28:42 2018 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Mar 13 17:28:42 2018 +0100
tree: 6653d911bd4aa8e1d1052543714cf74b194745fa
parent: 8c1217984bc3786dfe861e840b7772996c9ec8da [diff] [blame]
parent: ca4efdd0ad6a6c0a25913ac928e90bb20ebc5886 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index b8ac52b..b3cefcb 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -54,6 +54,8 @@
      reset it. Found independently by ccli8 on Github.
    * In mbedtls_entropy_free(), properly free the message digest context.
    * Fix memory leak in RSA self test.
+   * Fix X509 CRT parsing that would potentially accept an invalid tag when
+     parsing the subject alternative names.
 
 Changes
    * Clarified the documentation of mbedtls_ssl_setup.
commit	df6f3dd9b03e7193fb8791e20a3d13b222b046d2	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Mar 13 17:28:42 2018 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Mar 13 17:28:42 2018 +0100
tree	6653d911bd4aa8e1d1052543714cf74b194745fa
parent	8c1217984bc3786dfe861e840b7772996c9ec8da [diff] [blame]
parent	ca4efdd0ad6a6c0a25913ac928e90bb20ebc5886 [diff] [blame]