diff options
author | Simon Josefsson <simon@josefsson.org> | 2006-09-12 13:47:19 +0000 |
---|---|---|
committer | Simon Josefsson <simon@josefsson.org> | 2006-09-12 13:47:19 +0000 |
commit | 4beaae44242c559601b4337be36ab7fac0f2da3b (patch) | |
tree | 8bf920afdc87803073febae3209128525e940fac | |
parent | f949320f9fd4e8acafdf65485a3f36898c425a4a (diff) | |
download | gnutls-4beaae44242c559601b4337be36ab7fac0f2da3b.tar.gz |
Add.
-rw-r--r-- | NEWS | 12 |
1 files changed, 12 insertions, 0 deletions
@@ -5,6 +5,18 @@ See the end for copying conditions. * Version 1.4.4 (unreleased) +** Relax the test that caught signatures that exploit the variant of +** Bleichenbacher's Crypto 06 rump session attack on our +** verification logic flaw. +In particular, we now permit the digestAlgorithm.parameters field to +be present but empty, whereas in 1.4.3 we actually checked that the +field was absent. + +** Revert the removal of debug information for the GNUTLS-SA-2006-3 problem. +The messages are only printed in debug mode, which is not recommended +for normal use, and thus logging this situation cannot be abused as an +oracle in typical recommended situations. + ** API and ABI modifications: No changes since last version. |