eden-emu/mbedtls
15
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #1078 from daverodgman/padding-ct-changelog

Browse source 
Padding ct changelog
This commit is contained in:
Dave Rodgman 2023-09-25 14:02:42 +01:00 committed by GitHub
commit 76059e5ef8
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
ChangeLog.d/padding-ct-changelog.txt Normal file
View file

@ -0,0 +1,6 @@
Security
* Improve padding calculations in CBC decryption, NIST key unwrapping and
RSA OAEP decryption. With the previous implementation, some compilers
(notably recent versions of Clang) could produce non-constant time code,
which could allow a padding oracle attack if the attacker has access to
precise timing measurements.