Sign in
pigweed
/
third_party
/
github
/
ARMmbed
/
mbedtls
/
acf0df81f290325203b8129b9456ad5c2ae66525
/
.
/
ChangeLog.d
/
fix-aead-nonce.txt
blob: 767cc1d4a2e02276eee095a634071ec9dcf635fb [
file
] [
log
] [
blame
]
Security
* In psa_aead_generate_nonce(), do not read back from the output buffer.
This fixes a potential policy bypass or decryption oracle vulnerability
if the output buffer is in memory that is shared with an untrusted
application.