Sign in
pigweed
/
third_party
/
github
/
ARMmbed
/
mbedtls
/
8188d19b0ec64c6e53c01340db3cd58a09a304fc
/
.
/
ChangeLog.d
/
fix-aead-nonce.txt
blob: 767cc1d4a2e02276eee095a634071ec9dcf635fb [
file
] [
log
] [
blame
]
Security
* In psa_aead_generate_nonce(), do not read back from the output buffer.
This fixes a potential policy bypass or decryption oracle vulnerability
if the output buffer is in memory that is shared with an untrusted
application.