mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-04-16 08:42:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update padding const-time fix changelog

Browse Source 
Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
This commit is contained in:
Dave Rodgman 2023-09-27 16:27:50 +01:00
parent 641250f42b
commit e614129895
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog.d/padding-ct-changelog.txt
View File

@ -1,6 +1,6 @@
Security Security
* Improve padding calculations in CBC decryption, NIST key unwrapping and * Improve padding calculations in CBC decryption, NIST key unwrapping and
RSA OAEP decryption. With the previous implementation, some compilers RSA OAEP decryption. With the previous implementation, some compilers
(notably recent versions of Clang) could produce non-constant time code, (notably recent versions of Clang and IAR) could produce non-constant
which could allow a padding oracle attack if the attacker has access to time code, which could allow a padding oracle attack if the attacker
precise timing measurements. has access to precise timing measurements.