From 227189f6b382816868fb4398745c39186cfd5966 Mon Sep 17 00:00:00 2001 From: David Horstmann Date: Wed, 13 Mar 2024 14:09:41 +0000 Subject: [PATCH] Reference issue #3266 This is the issue that tracks incomplete support for buffer overlap, so we should refer to it when we discuss partial support whenever MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS is set. Signed-off-by: David Horstmann --- ChangeLog.d/psa-shared-memory-protection.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ChangeLog.d/psa-shared-memory-protection.txt b/ChangeLog.d/psa-shared-memory-protection.txt index e19c9bc1a..09779b7d2 100644 --- a/ChangeLog.d/psa-shared-memory-protection.txt +++ b/ChangeLog.d/psa-shared-memory-protection.txt @@ -9,9 +9,9 @@ Security the function call (i.e. no buffer parameters are in shared memory), copying may be disabled by setting MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS. Note that setting this option will cause input-output buffer overlap to - be only partially supported. + be only partially supported (#3266). Fixes CVE-2024-28960 Bugfix * Fully support arbitrary overlap between inputs and outputs of PSA functions. Note that overlap is still only partially supported when - MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS is set. + MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS is set (#3266).