diff options
author | Brent Cook <bcook@openbsd.org> | 2017-01-09 03:32:01 -0600 |
---|---|---|
committer | Brent Cook <bcook@openbsd.org> | 2017-01-09 03:32:33 -0600 |
commit | 2cbf5a2ee5918b6834c9beec2a26bc544e11b466 (patch) | |
tree | 0c61acef1c7aa0fb24049cd701fc00e42492320a | |
parent | 4ce7dae59e2cd6d4d3fb05d2a1dcb54a42c76da4 (diff) | |
download | portable-OPENBSD_6_0.tar.gz portable-OPENBSD_6_0.tar.bz2 portable-OPENBSD_6_0.zip |
update Changelogv2.4.5OPENBSD_6_0
-rw-r--r-- | ChangeLog | 13 |
1 files changed, 13 insertions, 0 deletions
@@ -28,6 +28,19 @@ history is also available from Git. | |||
28 | 28 | ||
29 | LibreSSL Portable Release Notes: | 29 | LibreSSL Portable Release Notes: |
30 | 30 | ||
31 | 2.4.5 - Security and compatibility fixes | ||
32 | |||
33 | * Avoid a side-channel cache-timing attack that can leak the ECDSA | ||
34 | private keys when signing. This is due to BN_mod_inverse() being | ||
35 | used without the constant time flag being set. | ||
36 | |||
37 | This issue was reported by Cesar Pereida Garcia and Billy Brumley | ||
38 | (Tampere University of Technology). The fix was developed by Cesar | ||
39 | Pereida Garcia. | ||
40 | |||
41 | * iOS and MacOS compatibility updates from Simone Basso and Jacob | ||
42 | Berkman. | ||
43 | |||
31 | 2.4.4 - Reliability improvements | 44 | 2.4.4 - Reliability improvements |
32 | 45 | ||
33 | * Avoid continual processing of an unlimited number of TLS records, | 46 | * Avoid continual processing of an unlimited number of TLS records, |