From 35aec416002c56bc970fab132986fbadd0bb5236 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Manuel=20P=C3=A9gouri=C3=A9-Gonnard?= Date: Tue, 3 Mar 2026 12:22:00 +0100 Subject: [PATCH] Add Changelog entry for FFDH missing peerkey check MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Manuel Pégourié-Gonnard --- ChangeLog.d/ffdh-peerkey-check.txt | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 ChangeLog.d/ffdh-peerkey-check.txt diff --git a/ChangeLog.d/ffdh-peerkey-check.txt b/ChangeLog.d/ffdh-peerkey-check.txt new file mode 100644 index 0000000000..fe54fae7cf --- /dev/null +++ b/ChangeLog.d/ffdh-peerkey-check.txt @@ -0,0 +1,6 @@ +Security + * Fix missing validation of the peer's key in key agreement operations using + PSA_ALG_FFDH: low-order elements were not rejected as they should be. This + is a problem for protocols using FFDH that expect contributory behaviour, + that is, where neither party should be able to force the shared secret + into a small set. Found and reported by Kai Tian.