Add ChangeLog entry

2024-10-18 12:21:04 +00:00 · 2018-10-03 13:40:16 +02:00 · 2018-10-03 13:40:16 +02:00 · ddffa06501
parent e2a10de275
commit ddffa06501
1 changed files with 8 additions and 0 deletions
--- a/8
+++ b/8
@ -1,5 +1,13 @@
 mbed TLS ChangeLog (Sorted per branch, date)

+= mbed TLS 2.xx.x branch released xxxx-xx-xx
+
+Security
+   * Fix a timing variation in RSA PKCS#1 v1.5 decryption that could
+     lead to a Bleichenbacher-style attack. In TLS, this affects
+     RSA-based ciphersuites without DHE or ECDHE. Reported by Yuval Yarom,
+     Eyal Ronen, Adi Shamir, David Wong and Daniel Genkin.
+
 = mbed TLS 2.13.1 branch released 2018-09-06

 API Changes