Release notes for GENERAL_NAME_cmp() NULL deref

2020-12-08 16:15:35 +01:00 · 2020-12-08 16:15:35 +01:00 · c50f8e2c6c
commit c50f8e2c6c
parent 7734eb9c8a
1 changed files with 15 additions and 0 deletions
--- a/15
+++ b/15
@ -28,6 +28,11 @@ history is also available from Git.

 LibreSSL Portable Release Notes:

+3.3.1 - Security fix
+
+	* Malformed ASN.1 in a certificate revocation list or a timestamp
+	  response token can lead to a NULL pointer dereference.
+
 3.3.0 - Development release

 	* Make openssl(1) s_server ignore -4 and -6 for compatibility with
@ -129,6 +134,11 @@ LibreSSL Portable Release Notes:

 	* Various documentation improvements, particularly around TLS methods.

+3.2.3 - Security fix
+
+	* Malformed ASN.1 in a certificate revocation list or a timestamp
+	  response token can lead to a NULL pointer dereference.
+
 3.2.2 - Stable release

 	* This is the first stable release with the new TLSv1.3
@ -380,6 +390,11 @@ LibreSSL Portable Release Notes:

 	* Use non-expired certificates first when building a certificate chain.

+3.1.5 - Security fix
+
+	* Malformed ASN.1 in a certificate revocation list or a timestamp
+	  response token can lead to a NULL pointer dereference.
+
 3.1.4 - Interoperability and bug fixes for the TLSv1.3 client:

 	* Improve client certificate selection to allow EC certificates