This bugfix release primarily backports a security fix and some small bug-fixes from the PolarSSL 1.2 branch and current development branch.
The HAVEGE random generator is now disabled by default. Although it provides (limited) entropy on most systems, it should never be the primary entropy source for the system.
Smaller fixes, see the ChangeLog for more details.
A possible DoS during the SSL Handshake has been found by Jack Lloyd and fixed in this release. More details can be found in Security Advisory 2013-03.
Who should update
Our advice for users of the PolarSSL 1.1 branch is to update!
Get your copy here: polarssl-1.1.7-gpl.tgz
The hashes for polarssl-1.1.7-gpl.tgz are:
SHA-1 : fa7b627576acced66b5302ffd8ef4a01f4af75d6 SHA-256: eb12668bf8ad4db8643fd40bb2d0cbce51353b132ab8d6ba5a73a979343fb805