Changelog entry for xxdh_psa_peerkey size validation

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2023-10-02 15:08:37 +02:00
parent c29df535ee
commit b782415e1b

View File

@ -0,0 +1,6 @@
Security
* Fix a remotely exploitable heap buffer overflow in TLS handshake parsing.
In TLS 1.3, all configurations are affected except PSK-only ones.
In TLS 1.2, the affected configurations are those with
MBEDTLS_USE_PSA_CRYPTO and ECDH enabled but DHM and RSA disabled.
Credit to OSS-Fuzz.