mirror of
https://github.com/cuberite/polarssl.git
synced 2025-10-04 02:52:38 -04:00
7 lines
358 B
Plaintext
7 lines
358 B
Plaintext
Security
|
|
* Improve padding calculations in CBC decryption, NIST key unwrapping and
|
|
RSA OAEP decryption. With the previous implementation, some compilers
|
|
(notably recent versions of Clang and IAR) could produce non-constant
|
|
time code, which could allow a padding oracle attack if the attacker
|
|
has access to precise timing measurements.
|