Sign in
pigweed
/
third_party
/
github
/
ARMmbed
/
mbedtls
/
a53779dba42e37e6b24ea5872234e26fc6ae8534
/
.
/
ChangeLog.d
/
fix-aead-nonce.txt
blob: 767cc1d4a2e02276eee095a634071ec9dcf635fb [
file
] [
log
] [
blame
]
Security
* In psa_aead_generate_nonce(), do not read back from the output buffer.
This fixes a potential policy bypass or decryption oracle vulnerability
if the output buffer is in memory that is shared with an untrusted
application.