TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 0efa8567d80543cce84d6a7f5a9d7075834d70bc^! / .
commit0efa8567d80543cce84d6a7f5a9d7075834d70bc[log] [tgz]
authorGilles Peskine <Gilles.Peskine@arm.com>Wed Nov 07 22:39:16 2018 +0100
committerGilles Peskine <Gilles.Peskine@arm.com>Thu Feb 21 18:17:05 2019 +0100
treeedb5227836b897e08e8104e6b7b08469cbe6b18d
parentf58078c7c5f322f28f09d314d04085f60119ca1c [diff]
Add changelog entry for mbedtls_ecdh_get_params robustness

diff --git a/ChangeLog b/ChangeLog
index 07cc876..82f7387 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,14 @@
 
 = mbed TLS 2.7.x branch released xxxx-xx-xx
 
+Security
+   * Make mbedtls_ecdh_get_params return an error if the second key
+     belongs to a different group from the first. Before, if an application
+     passed keys that belonged to different group, the first key's data was
+     interpreted according to the second group, which could lead to either
+     an error or a meaningless output from mbedtls_ecdh_get_params. In the
+     latter case, this could expose at most 5 bits of the private key.
+
 Bugfix
    * Run the AD too long test only if MBEDTLS_CCM_ALT is not defined.
      Raised as a comment in #1996.