mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-12-23 00:25:26 +00:00
Indicate the memory access variations in the changelog entry
This commit is contained in:
parent
40b57f4acd
commit
c5ccd7a1e7
|
@ -3,10 +3,11 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
|||
= mbed TLS 2.xx.x branch released xxxx-xx-xx
|
||||
|
||||
Security
|
||||
* Fix a timing variation in RSA PKCS#1 v1.5 decryption that could
|
||||
lead to a Bleichenbacher-style attack. In TLS, this affects
|
||||
RSA-based ciphersuites without DHE or ECDHE. Reported by Yuval Yarom,
|
||||
Eyal Ronen, Adi Shamir, David Wong and Daniel Genkin.
|
||||
* Fix timing variations and memory access variations in RSA PKCS#1 v1.5
|
||||
decryption that could lead to a Bleichenbacher-style padding oracle
|
||||
attack. In TLS, this affects RSA-based ciphersuites without DHE or
|
||||
ECDHE. Reported by Yuval Yarom, Eyal Ronen, Adi Shamir, David Wong and
|
||||
Daniel Genkin.
|
||||
|
||||
= mbed TLS 2.13.1 branch released 2018-09-06
|
||||
|
||||
|
|
Loading…
Reference in a new issue