Skip to content

Commit

Permalink
Cherry-pick RELEASES.md from release-branch/0.17.12.
Browse files Browse the repository at this point in the history 
Pick up the changelog entry for 0.17.12.
  • Loading branch information
@briansmith
briansmith committed Mar 6, 2025
1 parent 7b06be8 commit 8d3475a
Showing 1 changed file with 15 additions and 0 deletions.
15 changes: 15 additions & 0 deletions RELEASES.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
Version 0.17.12 (2025-03-05)
============================
Bug fix: https://github.com/briansmith/ring/pull/2447 for denial of service (DoS).

Fixes a panic in `ring::aead::quic::HeaderProtectionKey::new_mask()` when
integer overflow checking is enabled. Integer overflow checking is not enabled
in release mode by default, but `RUSTFLAGS="-C overflow-checks"` or
`overflow-checks = true` in the Cargo.toml profile can override this.

Fixes a panic in when using `ring::aead::{AES_128_GCM, AES_256_GCM}` when
integer overflow checking is enabled, when encrypting/decrypting approximately
68,719,476,700 bytes (about 64 gigabytes) of data in a single chunk. Integer
overflow checking is not enabled in release mode by default, but
`RUSTFLAGS="-C overflow-checks"` or `overflow-checks = true` in the Cargo.toml
profile can override this.

0 comments on commit 8d3475a

Please sign in to comment.