Google Git
Sign in
pigweed/third_party/github/ARMmbed/mbedtls/31162e44239cb1f70b220a96163400e5775ec1d2^!/./ChangeLog
commit
31162e44239cb1f70b220a96163400e5775ec1d2
[log]
author
Ron Eldor <Ron.Eldor@arm.com>
Tue Sep 05 15:34:35 2017 +0300
committer
Ron Eldor <Ron.Eldor@arm.com>
Tue Sep 05 15:34:35 2017 +0300
tree
5255d6277eff343c0331f57c785753e96a6d3dc3
parent
72ea31b026e1fc61b01662474aa5125817b968bc [diff] [blame]
Set PEM buffer to zero before freeing it

Set PEM buffer to zero before freeing it, to avoid private keys
being leaked to memory after releasing it.

diff --git a/ChangeLog b/ChangeLog
index 227faed..9dcd1a0 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,5 +1,11 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
+= mbed TLS x.x.x branch released xxxx-xx-xx
+
+Security
+   * Set PEM buffer to zero before freeing it, to avoid decoded private keys
+     being leaked to memory after release.
+
 = mbed TLS 2.6.0 branch released 2017-08-10
 
 Security