Changelog entry for xxdh_psa_peerkey size validation

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2025-03-16 04:20:49 +00:00 · 2023-10-02 15:08:37 +02:00 · 2023-10-02 15:08:37 +02:00 · b782415e1b
commit b782415e1b
parent c29df535ee
1 changed files with 6 additions and 0 deletions
--- a/ChangeLog.d/xxx_psa_peerkey.txt
+++ b/ChangeLog.d/xxx_psa_peerkey.txt
@ -0,0 +1,6 @@
+Security
+   * Fix a remotely exploitable heap buffer overflow in TLS handshake parsing.
+     In TLS 1.3, all configurations are affected except PSK-only ones.
+     In TLS 1.2, the affected configurations are those with
+     MBEDTLS_USE_PSA_CRYPTO and ECDH enabled but DHM and RSA disabled.
+     Credit to OSS-Fuzz.