Merge pull request #282 from ARMmbed/iotssl-469-rsa-crt-restricted

Add counter-measure against RSA-CRT attack
2026-01-07 15:09:28 +01:00 · 2015-09-08 13:05:51 +01:00 · 2015-09-08 13:05:51 +01:00 · e5a21b4493
commit e5a21b4493
parent 7f2f062a5d 5f50104c52
2 changed files with 45 additions and 3 deletions
--- a/5
+++ b/5
@ -2,6 +2,11 @@ mbed TLS ChangeLog (Sorted per branch, date)

 = mbed TLS 2.1.0 released 2015-09-04

+Security
+   * Add countermeasure against Lenstra's RSA-CRT attack for PKCS#1 v1.5
+     signatures. (Found by Florian Weimer, Red Hat.)
+     https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/
+
 Features
   * Added support for yotta as a build system.
   * Primary open source license changed to Apache 2.0 license.