KNOWN_BUGS: Schannel TLS 1.2 handshake bug in old Windows versions

Reported-by: plujon@users.noreply.github.com Closes https://github.com/curl/curl/issues/5488
author: Jay Satiro <raysatiro@yahoo.com> 2020-08-18 03:24:38 -0400
committer: Jay Satiro <raysatiro@yahoo.com> 2020-08-18 03:24:38 -0400
commit: 6332f65714d14b3f19662fd0607c7b59af400b9b (patch)
tree: 0e393c224195853a0c521ce8737cc39f781a81c4
parent: 3c9e021f86872baae412a427e807fbfa2f3e8a22 (diff)
download: curl-6332f65714d14b3f19662fd0607c7b59af400b9b.tar.gz
1 files changed, 9 insertions, 0 deletions
diff --git a/docs/KNOWN_BUGS b/docs/KNOWN_BUGS
index 583995cac..e35172daf 100644
--- a/docs/KNOWN_BUGS
+++ b/docs/KNOWN_BUGS
@@ -32,6 +32,7 @@ problems may have been fixed or changed somewhat since this was written!
  2.8 Schannel disable CURLOPT_SSL_VERIFYPEER and verify hostname
  2.9 TLS session cache doesn't work with TFO
  2.10 Store TLS context per transfer instead of per connection
+ 2.11 Schannel TLS 1.2 handshake bug in old Windows versions
 
  3. Email protocols
  3.1 IMAP SEARCH ALL truncated response
@@ -276,6 +277,14 @@ problems may have been fixed or changed somewhat since this was written!
 
  https://github.com/curl/curl/issues/5102
 
+2.11 Schannel TLS 1.2 handshake bug in old Windows versions
+
+ In old versions of Windows such as 7 and 8.1 the Schannel TLS 1.2 handshake
+ implementation likely has a bug that can rarely cause the key exchange to
+ fail, resulting in error SEC_E_BUFFER_TOO_SMALL or SEC_E_MESSAGE_ALTERED.
+
+ https://github.com/curl/curl/issues/5488
+
 3. Email protocols
 
 3.1 IMAP SEARCH ALL truncated response
author	Jay Satiro <raysatiro@yahoo.com>	2020-08-18 03:24:38 -0400
committer	Jay Satiro <raysatiro@yahoo.com>	2020-08-18 03:24:38 -0400
commit	6332f65714d14b3f19662fd0607c7b59af400b9b (patch)
tree	0e393c224195853a0c521ce8737cc39f781a81c4
parent	3c9e021f86872baae412a427e807fbfa2f3e8a22 (diff)
download	curl-6332f65714d14b3f19662fd0607c7b59af400b9b.tar.gz