]> git.ipfire.org Git - thirdparty/openssl.git/commitdiff
projects / thirdparty / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: f7252d7)
Add CHANGES.md entry for the EC/DSA nonce generation fixes
authorTomas Mraz <tomas@openssl.org>
Mon, 17 Jun 2024 10:35:39 +0000 (12:35 +0200)
committerTomas Mraz <tomas@openssl.org>
Thu, 20 Jun 2024 14:58:28 +0000 (16:58 +0200)
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tom Cosgrove <tom.cosgrove@arm.com>
Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
(Merged from https://github.com/openssl/openssl/pull/24660)

(cherry picked from commit 72bff68f6acc4f420e283bcc77db76eb1917d7bf)

CHANGES.md patch | blob | blame | history

diff --git a/CHANGES.md b/CHANGES.md
index 9918e10c972bae34b04dbf3e89fa83111c1b63b3..9eed55ab762681d7c9a35802301b188233563743 100644 (file)
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -145,6 +145,14 @@ OpenSSL 3.3
 
    *Tomáš Mráz*
 
+ * Improved EC/DSA nonce generation routines to avoid bias and timing
+   side channel leaks.
+
+   Thanks to Florian Sieck from Universität zu Lübeck and George Pantelakis
+   and Hubert Kario from Red Hat for reporting the issues.
+
+   *Tomáš Mráz and Paul Dale*
+
 ### Changes between 3.2 and 3.3.0 [9 Apr 2024]
 
  * The `-verify` option to the `openssl crl` and `openssl req` will make
Mirror of https://github.com/openssl/openssl.git