ssl-mac-zeroize.txt\ChangeLog.d - riscv-gnu-toolchain/qemu/roms/edk2/CryptoPkg/Library/MbedTlsLib/mbedtls.git - Unnamed repository; edit this file 'description' to name the repository.

index : riscv-gnu-toolchain/qemu/roms/edk2/CryptoPkg/Library/MbedTlsLib/mbedtls.git

Unnamed repository; edit this file 'description' to name the repository.

root

about summary refs log tree commit diff

path: root/ChangeLog.d/ssl-mac-zeroize.txt

blob: b49c7acd771c344128a67be23763b96878f1c69a (plain)

Security
   * Zeroize intermediate variables used to calculate the MAC in CBC cipher
     suites. This hardens the library in case stack memory leaks through a
     memory disclosure vulnerabilty, which could formerly have allowed a
     man-in-the-middle to inject fake ciphertext into a DTLS connection.