Fix uninitialised pointer dereference

commit: 0369a5291b525d2739e4ccb388761baaee86793f [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Nov 11 22:17:26 2014 +0100
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Wed Nov 12 00:01:52 2014 +0100
tree: 565f8847dcfc9b0b22174d008e20f689b30ff6dc
parent: e9271e683536619bbec55d14ac004fdf218b61ce [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index d3b7124..9821551 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,11 @@
 
 = PolarSSL 1.3.z branch
 
+Security
+   * Fix remotely-triggerable uninitialised pointer dereference caused by
+     crafted X.509 certificate (server is not affected if it doesn't ask for a
+     client certificate) (found using Codenomicon Defensics).
+
 Features
    * Add function pk_check_pair() to test if public and private keys match.
commit	0369a5291b525d2739e4ccb388761baaee86793f	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Nov 11 22:17:26 2014 +0100
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Wed Nov 12 00:01:52 2014 +0100
tree	565f8847dcfc9b0b22174d008e20f689b30ff6dc
parent	e9271e683536619bbec55d14ac004fdf218b61ce [diff] [blame]