mirror of
https://github.com/yuzu-mirror/mbedtls.git
synced 2025-12-06 07:12:32 +01:00
7 lines
350 B
Plaintext
7 lines
350 B
Plaintext
Security
|
|
* Improve padding calculations in CBC decryption, NIST key unwrapping and
|
|
RSA OAEP decryption. With the previous implementation, some compilers
|
|
(notably recent versions of Clang) could produce non-constant time code,
|
|
which could allow a padding oracle attack if the attacker has access to
|
|
precise timing measurements.
|