SwitchEmu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-02-19 08:43:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix length checking for AEAD ciphersuites

Browse Source
This commit is contained in:
Manuel Pégourié-Gonnard
2014-06-17 10:54:17 +02:00
committed by Paul Bakker
parent 1c98ff96b5
commit 0bcc4e1df7
2 changed files with 16 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ChangeLog
View File

@@ -5,6 +5,11 @@ TODO: bump SOVERSION for ABI change
(and various x509 structures got a new member)
= PolarSSL 1.3 branch
Security
* Fix length checking for AEAD ciphersuites (found by Codenomicon).
It was possible to crash the server (and client) using crafted messages
when a GCM suite was chosen.
Features
* Add CCM module and cipher mode to Cipher Layer
* Support for CCM and CCM_8 ciphersuites