yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-02-02 16:31:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

Changelog entry

Browse source
This commit is contained in:
Andrzej Kurek 2018-04-25 05:25:30 -04:00
parent 302be2fce4
commit 128bcbea1a
1 changed files with 5 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
ChangeLog
View file

@ -15,6 +15,11 @@ Security
where an optional signature algorithms list is expected in the cases of where an optional signature algorithms list is expected in the cases of
the signature algorithms section being too short. In the debug builds the signature algorithms section being too short. In the debug builds
the overread data is printed to the standard output. the overread data is printed to the standard output.
* Fix a client-side bug in the validation of the server's ciphersuite choice
potentially leading to the client accepting a ciphersuite it didn't offer
or one that cannot be used with the (D)TLS version chosen by the server.
This may lead to corruption of internal data structures for some
configurations.
Bugfix Bugfix
* Add missing dependencies in test suites that led to build failures * Add missing dependencies in test suites that led to build failures
@ -35,8 +40,6 @@ Bugfix
* Fix buffer length assertions in the ssl_parse_certificate_request() * Fix buffer length assertions in the ssl_parse_certificate_request()
function which leads to a potential one byte overread of the message function which leads to a potential one byte overread of the message
buffer. buffer.
* Fix cipher suite validation in ssl_parse_server_hello() by performing same
checks as performed in ssl_write_client_hello().
Changes Changes
* Improve testing in configurations that omit certain hashes or * Improve testing in configurations that omit certain hashes or