Fix memory leak parsing some X.509 certs

commit: 6b440389136afbcb0d831f880176c830bd3e0c7c [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Oct 23 14:53:46 2014 +0200
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Oct 23 14:53:46 2014 +0200
tree: e5b487715f96b5cda0c3a12b2fbe800d6b8410ab
parent: 308a5864779d1ce9a8cf5f25978b44dada062712 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 7603a39..4d6b7de 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,5 +1,16 @@
 PolarSSL ChangeLog
 
+= Version 1.2.12 released 2014-10-??
+
+Security
+   * Remotely-triggerable memory leak when parsing some X.509 certificates
+     (server is not affected if it doesn't ask for a client certificate).
+     (Found using Codenomicon Defensics.)
+
+Changes
+   * X.509 certificates with more than one AttributeTypeAndValue per
+     RelativeDistinguishedName are not accepted any more.
+
 = Version 1.2.11 released 2014-07-11
 Features
    * Entropy module now supports seed writing and reading
commit	6b440389136afbcb0d831f880176c830bd3e0c7c	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Thu Oct 23 14:53:46 2014 +0200
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Thu Oct 23 14:53:46 2014 +0200
tree	e5b487715f96b5cda0c3a12b2fbe800d6b8410ab
parent	308a5864779d1ce9a8cf5f25978b44dada062712 [diff] [blame]