Sign in
pigweed
/
third_party
/
github
/
ARMmbed
/
mbedtls
/
2a4344d1fafb57ba9039b359a42ed7f88b5b55c0
/
.
/
ChangeLog.d
/
fix-aead-nonce.txt
blob: 767cc1d4a2e02276eee095a634071ec9dcf635fb [
file
] [
log
] [
blame
]
Security
* In psa_aead_generate_nonce(), do not read back from the output buffer.
This fixes a potential policy bypass or decryption oracle vulnerability
if the output buffer is in memory that is shared with an untrusted
application.