yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Modify changelog entry to add pkcs12 pbe functions

Browse source 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
This commit is contained in:
Waleed Elmelegy 2023-09-13 13:35:16 +01:00
parent 57d09b72ef
commit 0684965f5a
1 changed files with 6 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
ChangeLog.d/add-new-pkcs5-pbe2-ext-fun.txt
View file

@ -1,6 +1,7 @@
Security
* Developers using mbedtls_pkcs5_pbes2() should review the size of the output
buffer passed to this function, and note that the output after decryption
may include CBC padding. Consider moving to the new function
mbedtls_pkcs5_pbes2_ext() which checks for overflow of the output buffer
and reports the actual length of the output.
* Developers using mbedtls_pkcs5_pbes2() or mbedtls_pkcs12_pbe() should review
the size of the output buffer passed to this function, and note that the
output after decryption may include CBC padding. Consider moving to the
new functions mbedtls_pkcs5_pbes2_ext() or mbedtls_pkcs12_pbe_ext() which
checks for overflow of the output buffer and reports the actual length
of the output.