Update change log

This commit is contained in:
Krzysztof Stachowiak 2018-03-14 11:23:34 +01:00
parent 8e0b1166b6
commit bcb8149510

View file

@ -46,6 +46,8 @@ Security
* Change default choice of DHE parameters from untrustworthy RFC 5114
to RFC 3526 containing parameters generated in a nothing-up-my-sleeve
manner.
* Fix a buffer overread in ssl_parse_server_psk_hint() that could cause a
crash on invalid input.
Features
* Allow comments in test data files.
@ -180,6 +182,8 @@ Bugfix
* In mbedtls_entropy_free(), properly free the message digest context.
* Fix status handshake status message in programs/ssl/dtls_client.c. Found
and fixed by muddog.
* Fix a possible arithmetic overflow in ssl_parse_server_psk_hint() that
could cause a key exchange to fail on valid data.
Changes
* Extend cert_write example program by options to set the certificate version