update Changelogv2.4.5 OPENBSD_6_0

author: Brent Cook <bcook@openbsd.org> 2017-01-09 03:32:01 -0600
committer: Brent Cook <bcook@openbsd.org> 2017-01-09 03:32:33 -0600
commit: 2cbf5a2ee5918b6834c9beec2a26bc544e11b466 (patch)
tree: 0c61acef1c7aa0fb24049cd701fc00e42492320a
parent: 4ce7dae59e2cd6d4d3fb05d2a1dcb54a42c76da4 (diff)
download: portable-OPENBSD_6_0.tar.gz
portable-OPENBSD_6_0.tar.bz2
portable-OPENBSD_6_0.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 743f8c0..05d43f8 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -28,6 +28,19 @@ history is also available from Git.
 LibreSSL Portable Release Notes:
+2.4.5  - Security and compatibility fixes
+        * Avoid a side-channel cache-timing attack that can leak the ECDSA
+          private keys when signing. This is due to BN_mod_inverse() being
+          used without the constant time flag being set.
+          This issue was reported by Cesar Pereida Garcia and Billy Brumley
+          (Tampere University of Technology). The fix was developed by Cesar
+          Pereida Garcia.
+        * iOS and MacOS compatibility updates from Simone Basso and Jacob
+          Berkman.
 2.4.4 - Reliability improvements
        * Avoid continual processing of an unlimited number of TLS records,
author	Brent Cook <bcook@openbsd.org>	2017-01-09 03:32:01 -0600
committer	Brent Cook <bcook@openbsd.org>	2017-01-09 03:32:33 -0600
commit	2cbf5a2ee5918b6834c9beec2a26bc544e11b466 (patch)
tree	0c61acef1c7aa0fb24049cd701fc00e42492320a
parent	4ce7dae59e2cd6d4d3fb05d2a1dcb54a42c76da4 (diff)
download	portable-OPENBSD_6_0.tar.gz portable-OPENBSD_6_0.tar.bz2 portable-OPENBSD_6_0.zip

diff --git a/ChangeLog b/ChangeLog index 743f8c0..05d43f8 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -28,6 +28,19 @@ history is also available from Git.
28		28
29	LibreSSL Portable Release Notes:	29	LibreSSL Portable Release Notes:
30		30
		31	2.4.5 - Security and compatibility fixes
		32
		33	* Avoid a side-channel cache-timing attack that can leak the ECDSA
		34	private keys when signing. This is due to BN_mod_inverse() being
		35	used without the constant time flag being set.
		36
		37	This issue was reported by Cesar Pereida Garcia and Billy Brumley
		38	(Tampere University of Technology). The fix was developed by Cesar
		39	Pereida Garcia.
		40
		41	* iOS and MacOS compatibility updates from Simone Basso and Jacob
		42	Berkman.
		43
31	2.4.4 - Reliability improvements	44	2.4.4 - Reliability improvements
32		45
33	* Avoid continual processing of an unlimited number of TLS records,	46	* Avoid continual processing of an unlimited number of TLS records,