Adapt ChangeLog

commit: cf873f74d40690e1c76ade0b6dadf228bc71d398 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Thu Oct 19 09:13:35 2017 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Oct 25 15:46:31 2017 +0100
tree: 5352525b0a012598d03f8a784e440c6981e8fa89
parent: 0f49bbc1fc63feafed4b295c1bb0880385faffed [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 8f7843d..55e8cf1 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,13 @@
 
 = mbed TLS 2.1.x released xxxx-xx-xx
 
+Security
+   * Make mbedtls_mpi_read_binary constant-time with respect to
+     the input data. Previously, trailing zero bytes were detected
+     and omitted for the sake of saving memory, but potentially
+     leading to slight timing differences.
+     Reported by Marco Macchetti, Kudelski Group.
+
 Bugfix
    * Fix ssl_parse_record_header() to silently discard invalid DTLS records
      as recommended in RFC 6347 Section 4.1.2.7.
commit	cf873f74d40690e1c76ade0b6dadf228bc71d398	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Thu Oct 19 09:13:35 2017 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Oct 25 15:46:31 2017 +0100
tree	5352525b0a012598d03f8a784e440c6981e8fa89
parent	0f49bbc1fc63feafed4b295c1bb0880385faffed [diff] [blame]