Add.

author: Simon Josefsson <simon@josefsson.org> 2006-09-08 13:43:50 +0000
committer: Simon Josefsson <simon@josefsson.org> 2006-09-08 13:43:50 +0000
commit: ac68d9e20c65d748655f527a81d5cf3a63823c14 (patch)
tree: 75d8020571dd278d6a5e179beef695cbbb3ddd97
parent: c5c36a61fc8e0c2764a6818788344a9d79fdcad4 (diff)
download: gnutls-ac68d9e20c65d748655f527a81d5cf3a63823c14.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index ad2f827e2b..e77a6d4a8e 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,12 @@ See the end for copying conditions.
 
 * Version 1.5.1 (unreleased)
 
+** Fix PKCS#1 verification to avoid a variant of Bleichenbacher's
+** Crypto 06 rump session attack.
+In particular, we check that the digestAlgorithm.parameters field is
+empty, to avoid that it can contain "garbage" that may be used to
+alter the numeric properties of the signature.
+
 ** Fix PKCS#1 decryption to avoid Bleichenbacher's Crypto 98 attack.
 See <http://www.bell-labs.com/user/bleichen/papers/pkcs.ps.gz>.
author	Simon Josefsson <simon@josefsson.org>	2006-09-08 13:43:50 +0000
committer	Simon Josefsson <simon@josefsson.org>	2006-09-08 13:43:50 +0000
commit	ac68d9e20c65d748655f527a81d5cf3a63823c14 (patch)
tree	75d8020571dd278d6a5e179beef695cbbb3ddd97
parent	c5c36a61fc8e0c2764a6818788344a9d79fdcad4 (diff)
download	gnutls-ac68d9e20c65d748655f527a81d5cf3a63823c14.tar.gz