ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

60      get an invalid signature accepted if they could cause a hash accelerator
91      inconsistent state of the output could then cause a NULL dereference either
100      PEM keys to a user. This could cause a crash or information disclosure.
327      not cause the PSA subsystem to use HMAC_DRBG: it uses HMAC_DRBG only when
576      malicious client could cause information disclosure or a denial of service.
587      Note that setting this option will cause input-output buffer overlap to
1125      could cause a crash in programs/test/benchmark.
1570      or a man-in-the-middle could cause a DTLS server to read up to 255 bytes
1577       client or server could cause an MbedTLS server or client to overread up
1585      checked properly when validating the certificate. This could cause a
1782      and mbedtls_ssl_free() would cause an internal session buffer to
1794      These header files cause compilation errors in musl.
2221    * Fix a bug in ECDSA that would cause it to fail when the hash is all-bits
2531      are implemented. This could cause failures or the silent use of non-random
2787      macros). This would cause the original Lucky 13 attack to be possible in
2876      the server could cause it to drop established associations with
2954    * Fix a bug in mbedtls_pk_parse_key() that would cause it to accept some
2957    * Fix a bug in mbedtls_pk_parse_key() that would cause it to
3039      cause functions to return this error code rather than a success. There are
3075      about 1 bit of information on average and could cause the value to be
3962    * Fix a buffer overread in ssl_parse_server_key_exchange() that could cause
3964    * Fix a buffer overread in ssl_parse_server_psk_hint() that could cause a
4005      that could cause a key exchange to fail on valid data.
4007      could cause a key exchange to fail on valid data.
4325    * Fix behaviour that hid the original cause of fatal alerts in some cases
4416      traversing a chain of trusted CA. The issue would cause both flags,
4418      set when the verification conditions are not met regardless of the cause.
4428      in RFC 6347 Section 4.3.1. This could cause the execution of the
4435      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
4437      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
4439      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
4441      cause buffer bound checks to be bypassed. Found by Eyal Itkin.
4508    * Fix conditional statement that would cause a 1 byte overread in
5238    * Very large records using less padding could cause a buffer overread of up
6381    * Fixed dangerous bug that can cause a heap overflow in
6420       peer may cause xyssl to loop indefinitely by sending a certificate
6530     * Fixed a bug in rsa_check_privkey that would wrongly cause