diff options
author | Matt Caswell <matt@openssl.org> | 2017-11-02 11:23:17 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2017-11-02 12:01:15 +0000 |
commit | de8c19cddd5c08b95f3872f6ce694dcd0f7ca58d (patch) | |
tree | 016b8c8df2196ef524d6893c478c9f0fccb8ef22 /CHANGES | |
parent | 420b88cec8c6f7c67fad07bf508dcccab094f134 (diff) |
Update CHANGES and NEWS for new release
Reviewed-by: Andy Polyakov <appro@openssl.org>
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 34 |
1 files changed, 34 insertions, 0 deletions
@@ -177,6 +177,40 @@ issues, has been replaced to always returns NULL. [Rich Salz] + + Changes between 1.1.0f and 1.1.0g [2 Nov 2017] + + *) bn_sqrx8x_internal carry bug on x86_64 + + There is a carry propagating bug in the x86_64 Montgomery squaring + procedure. No EC algorithms are affected. Analysis suggests that attacks + against RSA and DSA as a result of this defect would be very difficult to + perform and are not believed likely. Attacks against DH are considered just + feasible (although very difficult) because most of the work necessary to + deduce information about a private key may be performed offline. The amount + of resources required for such an attack would be very significant and + likely only accessible to a limited number of attackers. An attacker would + additionally need online access to an unpatched system using the target + private key in a scenario with persistent DH parameters and a private + key that is shared between multiple clients. + + This only affects processors that support the BMI1, BMI2 and ADX extensions + like Intel Broadwell (5th generation) and later or AMD Ryzen. + + This issue was reported to OpenSSL by the OSS-Fuzz project. + (CVE-2017-3736) + [Andy Polyakov] + + *) Malformed X.509 IPAddressFamily could cause OOB read + + If an X.509 certificate has a malformed IPAddressFamily extension, + OpenSSL could do a one-byte buffer overread. The most likely result + would be an erroneous display of the certificate in text format. + + This issue was reported to OpenSSL by the OSS-Fuzz project. + (CVE-2017-3735) + [Rich Salz] + Changes between 1.1.0e and 1.1.0f [25 May 2017] *) Have 'config' recognise 64-bit mingw and choose 'mingw64' as the target |