update Changelogv2.3.10 OPENBSD_5_9

author: Brent Cook <bcook@openbsd.org> 2017-01-09 03:31:28 -0600
committer: Brent Cook <bcook@openbsd.org> 2017-01-09 03:31:28 -0600
commit: 38006812014aff2576b84235e9d9e75ee9094b46 (patch)
tree: be77c05831da62a4bb6f2d9c163dbcbd8041045a
parent: 730f199c9c461fe2c94318138e6d316ee59f5a9f (diff)
download: portable-OPENBSD_5_9.tar.gz
portable-OPENBSD_5_9.tar.bz2
portable-OPENBSD_5_9.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 0a9205e..ae2bf87 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -28,6 +28,19 @@ history is also available from Git.
 LibreSSL Portable Release Notes:
+2.3.10 - Security and compatibility fixes
+        * Avoid a side-channel cache-timing attack that can leak the ECDSA
+          private keys when signing. This is due to BN_mod_inverse() being
+          used without the constant time flag being set.
+          This issue was reported by Cesar Pereida Garcia and Billy Brumley
+          (Tampere University of Technology). The fix was developed by Cesar
+          Pereida Garcia.
+        * iOS and MacOS compatibility updates from Simone Basso and Jacob
+          Berkman.
 2.3.9 - Reliability improvements
        * Avoid continual processing of an unlimited number of TLS records,
author	Brent Cook <bcook@openbsd.org>	2017-01-09 03:31:28 -0600
committer	Brent Cook <bcook@openbsd.org>	2017-01-09 03:31:28 -0600
commit	38006812014aff2576b84235e9d9e75ee9094b46 (patch)
tree	be77c05831da62a4bb6f2d9c163dbcbd8041045a
parent	730f199c9c461fe2c94318138e6d316ee59f5a9f (diff)
download	portable-OPENBSD_5_9.tar.gz portable-OPENBSD_5_9.tar.bz2 portable-OPENBSD_5_9.zip

diff --git a/ChangeLog b/ChangeLog index 0a9205e..ae2bf87 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -28,6 +28,19 @@ history is also available from Git.
28		28
29	LibreSSL Portable Release Notes:	29	LibreSSL Portable Release Notes:
30		30
		31	2.3.10 - Security and compatibility fixes
		32
		33	* Avoid a side-channel cache-timing attack that can leak the ECDSA
		34	private keys when signing. This is due to BN_mod_inverse() being
		35	used without the constant time flag being set.
		36
		37	This issue was reported by Cesar Pereida Garcia and Billy Brumley
		38	(Tampere University of Technology). The fix was developed by Cesar
		39	Pereida Garcia.
		40
		41	* iOS and MacOS compatibility updates from Simone Basso and Jacob
		42	Berkman.
		43
31	2.3.9 - Reliability improvements	44	2.3.9 - Reliability improvements
32		45
33	* Avoid continual processing of an unlimited number of TLS records,	46	* Avoid continual processing of an unlimited number of TLS records,