cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-08-22 04:23:07 -04:00
Code Issues Packages Projects Releases Wiki Activity

Modify changelog entry to add pkcs12 pbe functions

Browse Source 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
This commit is contained in:
Waleed Elmelegy 2023-09-13 13:35:16 +01:00
parent f919393e05
commit 58ed2318c5
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
ChangeLog.d/add-new-pkcs5-pbe2-ext-fun.txt
View File

@ -1,6 +1,7 @@
Security Security
* Developers using mbedtls_pkcs5_pbes2() should review the size of the output * Developers using mbedtls_pkcs5_pbes2() or mbedtls_pkcs12_pbe() should review
buffer passed to this function, and note that the output after decryption the size of the output buffer passed to this function, and note that the
may include CBC padding. Consider moving to the new function output after decryption may include CBC padding. Consider moving to the
mbedtls_pkcs5_pbes2_ext() which checks for overflow of the output buffer new functions mbedtls_pkcs5_pbes2_ext() or mbedtls_pkcs12_pbe_ext() which
and reports the actual length of the output. checks for overflow of the output buffer and reports the actual length
of the output.