From cb4ab0662dfbe462dbe578ffa7d6f44effa51d82 Mon Sep 17 00:00:00 2001
From: Jack Lloyd <lloyd@randombit.net>
Date: Wed, 4 Nov 2015 14:34:27 -0500
Subject: Update for 1.11.24 release

---
 doc/security.rst | 11 +++++++++++
 1 file changed, 11 insertions(+)

(limited to 'doc')

diff --git a/doc/security.rst b/doc/security.rst
index 192571829..84d8d49d8 100644
--- a/doc/security.rst
+++ b/doc/security.rst
@@ -19,6 +19,17 @@ Advisories
 2015
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
+* 2015-11-04: TLS certificate authentication bypass
+
+  When the bugs affecting X.509 path validation were fixed in 1.11.22, a check
+  in Credentials_Manager::verify_certificate_chain was accidentally removed
+  which caused path validation failures not to be signaled to the TLS layer.  So
+  for affected versions, certificate authentication in TLS is bypassed. As a
+  workaround, applications can override the call and implement the correct
+  check. Reported by Florent Le Coz in GH #324
+
+  Introduced in 1.11.22, fixed in 1.11.24
+
 * 2015-10-26 (CVE-2015-7824): Padding oracle attack on TLS
 
   A padding oracle attack was possible against TLS CBC ciphersuites because if a
-- 
cgit v1.2.3