TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 7deee20cd26d0b54e025f86a0d8727bf865991ae^! / .
commit7deee20cd26d0b54e025f86a0d8727bf865991ae[log] [tgz]
authorHanno Becker <hanno.becker@arm.com>Mon Sep 25 10:46:20 2017 +0100
committerManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Mon Mar 05 12:44:28 2018 +0100
treeb5e625d1ff6a6fdcd9ce77f49ced4d8c2a1f5a5d
parent05e464dff7a0143ecfe87191e00a281fab1d1619 [diff]
Add ChangeLog entry for previous security fix

Fixes #825

diff --git a/ChangeLog b/ChangeLog
index 68fb6f5..4ee9ea8 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,22 +1,18 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
-= mbed TLS 2.7.x branch released 2018-xx-xx
-
-Default behavior changes
-   * The truncated HMAC extension now conforms to RFC 6066. This means
-     that when both sides of a TLS connection negotiate the truncated
-     HMAC extension, Mbed TLS can now interoperate with other
-     compliant implementations, but this breaks interoperability with
-     prior versions of Mbed TLS. To restore the old behavior, enable
-     the (deprecated) option MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT in
-     config.h. Found by Andreas Walz (ivESK, Offenburg University of
-     Applied Sciences).
+= mbed TLS x.x.x branch released xxxx-xx-xx
 
 Security
    * Fix implementation of the truncated HMAC extension. The previous
      implementation allowed an offline 2^80 brute force attack on the
      HMAC key of a single, uninterrupted connection (with no
      resumption of the session).
+   * Fix a bug in the X.509 module potentially leading to a buffer overread
+     during CRT verification or to invalid or omitted checks for certificate
+     validity. The former can be triggered remotely, while the latter requires
+     a non DER-compliant certificate correctly signed by a trusted CA, or a
+     trusted CA with a non DER-compliant certificate. Found by luocm on GitHub.
+     Fixes #825.
 
 Features
    * Extend PKCS#8 interface by introducing support for the entire SHA
@@ -44,6 +40,16 @@
    * MD functions deprecated in 2.7.0 are no longer inline, to provide
      a migration path for those depending on the library's ABI.
 
+Default behavior changes
+   * The truncated HMAC extension now conforms to RFC 6066. This means
+     that when both sides of a TLS connection negotiate the truncated
+     HMAC extension, Mbed TLS can now interoperate with other
+     compliant implementations, but this breaks interoperability with
+     prior versions of Mbed TLS. To restore the old behavior, enable
+     the (deprecated) option MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT in
+     config.h. Found by Andreas Walz (ivESK, Offenburg University of
+     Applied Sciences).
+
 = mbed TLS 2.7.0 branch released 2018-02-03
 
 Security