Skip to content
This repository was archived by the owner on Aug 24, 2025. It is now read-only.

Commit 6190960

Browse files
mattcaswellmattcaswell
committed
Update CHANGES and NEWS for new release
Reviewed-by: Andy Polyakov <appro@openssl.org>
1 parent 4443cf7 commit 6190960

File tree

2 files changed

+34
-1
lines changed

2 files changed

+34
-1
lines changed

CHANGES

Lines changed: 32 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9,9 +9,41 @@
99

1010
Changes between 1.1.0f and 1.1.0g [xx XXX xxxx]
1111

12+
*) bn_sqrx8x_internal carry bug on x86_64
13+
14+
There is a carry propagating bug in the x86_64 Montgomery squaring
15+
procedure. No EC algorithms are affected. Analysis suggests that attacks
16+
against RSA and DSA as a result of this defect would be very difficult to
17+
perform and are not believed likely. Attacks against DH are considered just
18+
feasible (although very difficult) because most of the work necessary to
19+
deduce information about a private key may be performed offline. The amount
20+
of resources required for such an attack would be very significant and
21+
likely only accessible to a limited number of attackers. An attacker would
22+
additionally need online access to an unpatched system using the target
23+
private key in a scenario with persistent DH parameters and a private
24+
key that is shared between multiple clients.
25+
26+
This only affects processors that support the BMI1, BMI2 and ADX extensions
27+
like Intel Broadwell (5th generation) and later or AMD Ryzen.
28+
29+
This issue was reported to OpenSSL by the OSS-Fuzz project.
30+
(CVE-2017-3736)
31+
[Andy Polyakov]
32+
33+
*) Malformed X.509 IPAddressFamily could cause OOB read
34+
35+
If an X.509 certificate has a malformed IPAddressFamily extension,
36+
OpenSSL could do a one-byte buffer overread. The most likely result
37+
would be an erroneous display of the certificate in text format.
38+
39+
This issue was reported to OpenSSL by the OSS-Fuzz project.
40+
(CVE-2017-3735)
41+
[Rich Salz]
42+
1243
*) Ignore the '-named_curve auto' value for compatibility of applications
1344
with OpenSSL 1.0.2.
1445
[Tomas Mraz <tmraz@fedoraproject.org>]
46+
1547
*) Support for SSL_OP_NO_ENCRYPT_THEN_MAC in SSL_CONF_cmd.
1648
[Emilia Käsper]
1749

NEWS

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,8 @@
77

88
Major changes between OpenSSL 1.1.0f and OpenSSL 1.1.0g [under development]
99

10-
o
10+
o bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
11+
o Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)
1112

1213
Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.0f [25 May 2017]
1314

0 commit comments

Comments
 (0)