Mention ed448 fix in NEWS.

author Niels Möller <nisse@lysator.liu.se>

Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)

committer Niels Möller <nisse@lysator.liu.se>

Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)
author Niels Möller <nisse@lysator.liu.se>
Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)
committer Niels Möller <nisse@lysator.liu.se>
Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)
diff --git a/NEWS b/NEWS

index 48ae52a420beaecf6dd4f02dc83296aa3a5e3fb8..ad463a39412498cac00853df5d9ef4bd19cac90b 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -146,6 +146,10 @@ NEWS for the Nettle 4.0 release
           recursion and stack usage for some inputs. Both problems
           reported via oss-fuzz.
  
+       * Fix ed448_shake256_verify to check that the final signature
+         octet is zero (previous versions completely ignored this
+         somewhat redundant octet). Reported by Oren Yomtov.
+
         New features:
  
         * Support for SLH-DSA signatures (stateless hash-based digital
author	Niels Möller <nisse@lysator.liu.se>
	Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)
committer	Niels Möller <nisse@lysator.liu.se>
	Sat, 24 Jan 2026 16:21:53 +0000 (17:21 +0100)