mbedtls/ChangeLog.d/add-new-pkcs5-pbe2-ext-fun.txt
Waleed Elmelegy 4ac8619282 Improve mbedtls_pkcs5_pbes2_ext changelog description
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
2023-08-29 14:56:15 +01:00

6 lines
363 B
Text

Security
* Developers using mbedtls_pkcs5_pbes2() should review the size of the output
buffer passed to this function, and note that the output after decryption
may include CBC padding. Consider moving to the new function
mbedtls_pkcs5_pbes2_ext() which checks for overflow of the output buffer
and reports the actual length of the output.