cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-08-21 11:36:28 -04:00
Code Issues Packages Projects Releases Wiki Activity

Improve mbedtls_pkcs5_pbes2_ext changelog description

Browse Source 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
This commit is contained in:
Waleed Elmelegy 2023-08-29 14:56:15 +01:00
parent dcad168acf
commit dffb1e3d66
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
ChangeLog.d/add-new-pkcs5-pbe2-ext-fun.txt
View File

@ -1,6 +1,6 @@
Features Security
* Add new mbedtls_pkcs5_pbes2_ext function a more secure replacement to * Developers using mbedtls_pkcs5_pbes2() should review the size of the output
mbedtls_pkcs5_pbes2 function because it reports the length of the output buffer passed to this function, and note that the output after decryption
bytes written to the output buffer and it requires a parameter containing may include CBC padding. Consider moving to the new function
the output buffer size and validate if the output buffer is big enough mbedtls_pkcs5_pbes2_ext() which checks for overflow of the output buffer
for output including padding. and reports the actual length of the output.