mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-25 09:35:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add ChangeLog

Browse Source 
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
This commit is contained in:
Ronald Cron 2022-11-16 11:04:48 +01:00
parent e9f92c4fbc
commit 9a1396bfcc
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
ChangeLog.d/fix-in-cid-buffer-size.txt Normal file
View File

@ -0,0 +1,15 @@
Bugfix
* Fix potential buffer overflow in DTLS with MBEDTLS_SSL_DTLS_CONNECTION_ID
enabled leading to context corruption.
Security
* Fix potential memory probe through non-constant time memcmp() in DTLS
with MBEDTLS_SSL_DTLS_CONNECTION_ID enabled. The memory probe is possible
only under very specific and unlikely conditions:
2 * MBEDTLS_SSL_CID_OUT_LEN_MAX < MBEDTLS_SSL_CID_IN_LEN_MAX if
MBEDTLS_SSL_CONTEXT_SERIALIZATION is disabled,
MBEDTLS_SERVER_HELLO_RANDOM_LEN + MBEDTLS_CLIENT_HELLO_RANDOM_LEN +
2 * MBEDTLS_SSL_CID_OUT_LEN_MAX < MBEDTLS_SSL_CID_IN_LEN_MAX if
MBEDTLS_SSL_CONTEXT_SERIALIZATION is enabled. Those conditions are not
met with the default values of MBEDTLS_SSL_CID_IN_LEN_MAX and
MBEDTLS_SSL_CID_OUT_LEN_MAX where the two maximum lengths are equal.