mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-30 06:33:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #1078 from daverodgman/padding-ct-changelog

Browse Source 
Padding ct changelog
This commit is contained in:
Dave Rodgman 2023-09-25 14:02:42 +01:00 committed by GitHub
commit 76059e5ef8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog.d/padding-ct-changelog.txt Normal file
View File

@ -0,0 +1,6 @@
Security
* Improve padding calculations in CBC decryption, NIST key unwrapping and
RSA OAEP decryption. With the previous implementation, some compilers
(notably recent versions of Clang) could produce non-constant time code,
which could allow a padding oracle attack if the attacker has access to
precise timing measurements.