yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

NIST_KW in cipher: credit the reporter

Browse source 
This issue was found by Guido Vranken's Cryptofuzz running on the
OSS-Fuzz platform.

Fix #3665

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2020-12-07 14:26:07 +01:00
parent 3aae5d4ed7
commit 22a191199d
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
ChangeLog.d/cipher-auth-crypt-nist-kw.txt
View file

@ -3,7 +3,8 @@ API changes
mbedtls_cipher_auth_decrypt() no longer accept NIST_KW contexts, mbedtls_cipher_auth_decrypt() no longer accept NIST_KW contexts,
as they have no way to check if the output buffer is large enough. as they have no way to check if the output buffer is large enough.
Please use mbedtls_cipher_auth_encrypt_ext() and Please use mbedtls_cipher_auth_encrypt_ext() and
mbedtls_cipher_auth_decrypt_ext() instead. mbedtls_cipher_auth_decrypt_ext() instead. Credit to OSS-Fuzz and
Cryptofuzz. Fixes #3665.
Security Security
* The functions mbedtls_cipher_auth_encrypt() and * The functions mbedtls_cipher_auth_encrypt() and