From: Loup Vaillant Date: Sun, 24 Jun 2018 14:03:35 +0000 (+0200) Subject: 2.0.4 changelog X-Git-Url: https://git.codecow.com/?a=commitdiff_plain;h=6c2edbb48a61f43452c48c5f1e3ddabb19af3111;p=Monocypher.git 2.0.4 changelog --- diff --git a/CHANGELOG.md b/CHANGELOG.md index a503c3b..3b30771 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,13 @@ +2.0.4 +----- +2018/06/24 + +- Corrected a critical vulnerability in EdDSA, where crypto_check() was + accepting invalid signatures. (Found by Mike Pechkin.) The current + fix removes a buggy optimisation, effectively halving the performance + of EdDSA. +- The test suite no longer tries to allocate zero bytes (some platforms + fail such an allocation). 2.0.3 -----