mbedtls/ChangeLog.d/tls-max-version-reset.txt

Security
   * Restore the maximum TLS version to be negotiated to the configured one
     when an SSL context is reset with the mbedtls_ssl_session_reset() API.
     An attacker was able to prevent an Mbed TLS server from establishing any
     TLS 1.3 connection potentially resulting in a Denial of Service or forced
     version downgrade from TLS 1.3 to TLS 1.2. Fixes #8654 reported by hey3e.
Add change log Signed-off-by: Ronald Cron <ronald.cron@arm.com> 2024-02-08 09:26:07 +00:00			`Security`
			`* Restore the maximum TLS version to be negotiated to the configured one`
			`when an SSL context is reset with the mbedtls_ssl_session_reset() API.`
			`An attacker was able to prevent an Mbed TLS server from establishing any`
			`TLS 1.3 connection potentially resulting in a Denial of Service or forced`
			`version downgrade from TLS 1.3 to TLS 1.2. Fixes #8654 reported by hey3e.`