mirror of
https://git.suyu.dev/suyu/mbedtls.git
synced 2026-01-08 07:28:58 +01:00
x509: CRL: reject unsupported critical extensions
This commit is contained in:
Manuel Pégourié-Gonnard
parent
f3ada4adb0
commit
fd3e4fbae7
6 changed files with 83 additions and 4 deletions
|
|
@ -17,6 +17,8 @@ Security
|
|||
implementation allowed an offline 2^80 brute force attack on the
|
||||
HMAC key of a single, uninterrupted connection (with no
|
||||
resumption of the session).
|
||||
* Fix CRL parsing to reject CRLs containing unsupported critical
|
||||
extensions. Found by Falko Strenzke and Evangelos Karatsiolis.
|
||||
|
||||
Features
|
||||
* Extend PKCS#8 interface by introducing support for the entire SHA
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue