Forbid sequence number wrapping

commit: be04673c49945d0607bb224db5cb2264fb645c7a [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Mon Mar 10 21:20:29 2014 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Jul 08 11:04:19 2014 +0200
tree: 0096a3489bbece42c0fa2edfcad0d603f35a7137
parent: 50a5c53398b5ffc3cc997a8c7d432a025c8de2f3 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index f1fc690..fcdfccc 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -9,6 +9,7 @@
      "triple handshake" attack when authentication mode is optional (the
      attack was already impossible when authentication is required).
    * Check notBefore timestamp of certificates and CRLs from the future.
+   * Forbid sequence number wrapping
 
 Bugfix
    * Fixed X.509 hostname comparison (with non-regular characters)
commit	be04673c49945d0607bb224db5cb2264fb645c7a	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Mon Mar 10 21:20:29 2014 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Jul 08 11:04:19 2014 +0200
tree	0096a3489bbece42c0fa2edfcad0d603f35a7137
parent	50a5c53398b5ffc3cc997a8c7d432a025c8de2f3 [diff] [blame]