Adapt ChangeLog

2025-03-06 22:29:43 +00:00 · 2017-10-13 16:54:58 +01:00 · 2017-10-13 16:54:58 +01:00 · e27543dee1
parent 80e0d46062
commit e27543dee1
1 changed files with 5 additions and 0 deletions
--- a/5
+++ b/5
@ -6,6 +6,11 @@ Bugfix
   * Fix ssl_parse_record_header() to silently discard invalid DTLS records
     as recommended in RFC 6347 Section 4.1.2.7.

+Security
+   * Change default choice of DHE parameters from untrustworthy RFC 5114
+     to RFC 3526 containing parameters generated in a nothing-up-my-sleeve
+     manner.
+
 = mbed TLS 2.1.9 branch released 2017-08-10

 Security