Gilles Peskine bc0ff75455 Fix NULL+0 undefined behavior in ECB encryption and decryption ...

psa_cipher_encrypt() and psa_cipher_decrypt() sometimes add a zero offset to
a null pointer when the cipher does not use an IV. This is undefined
behavior, although it works as naively expected on most platforms. This
can cause a crash under modern Asan (depending on compiler optimizations).

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

2022-11-16 14:41:33 +01:00

..

00README.md

2.24.0 is still covered by the old policy

2020-10-01 00:35:49 +02:00

add-rsa-pss-rsae-support-for-tls12.txt

fix typo and changelog entry issues

2022-07-28 23:08:00 +08:00

bn_mul-fix-x86-pic-compilation-for-gcc-4.txt

Add a ChangeLog entry

2022-07-19 08:55:48 +01:00

cert_write-set-extended-key-usages.txt

Update Changelog

2022-10-28 11:39:04 +01:00

driver-only-hashes.txt

Add ChangeLog entry about driver-only hashes.

2022-09-16 12:03:52 +02:00

ecdsa-verify-fixes.txt

Credit Cryptofuzz in the changelog

2022-10-27 20:37:23 +01:00

ecjpake_to_pms.txt

Add a changelog entry for ECJPAKE to PMS KDF

2022-09-27 05:16:10 -04:00

extend-query_compile_time_config-to-psa_want.txt

Add parsing of psa/crypto_config.h for PSA_WANT_xxx to query_compile_time_config

2022-07-25 12:19:35 +01:00

fix_aead_psa_driver_build.txt

Add changelog entry

2022-10-12 11:17:41 +02:00

fix_build_error_for_mbedtls_deprecated_removed.txt

Fix missing prototype warning when MBEDTLS_DEPRECATED_REMOVED is

2022-08-02 11:15:18 +05:30

fix_build_tls1_2_with_single_encryption_type.txt

Reword change log entry

2022-10-10 13:30:52 +02:00

fix_cmake_gen_files

Fix linking of generated files in cmake

2022-07-19 17:23:30 +01:00

fix_cmake_using_iar_toolchain.txt

cmake: IAR support option( MBEDTLS_FATAL_WARNINGS)

2022-08-02 03:23:02 +00:00

fix_dh_genprime_error_reporting.txt

Add Changelog entry

2022-11-10 15:30:12 +00:00

fix_hard_link_across_drives

Copy files instead of hard-linking on Windows

2022-08-10 16:27:14 +02:00

fix_psa_crypto_cipher_h_include.txt

Use double quotes to include private header file psa_crypto_cipher.h

2022-08-02 12:44:35 +02:00

fix_tls13_session_resumption_fail_when_hostname_is_not_localhost.txt

Apply suggestions from code review

2022-10-31 14:30:24 +00:00

fix_x509_get_name_mem_leak.txt

Add ChangeLog entry for memory leak fix

2022-10-05 12:09:18 +01:00

fix_x509_info_hwmodulename.txt

Add Changelog entry

2022-09-29 13:52:55 -03:00

fix_zeroization.txt

Add Changelog

2022-11-01 16:28:03 +00:00

fix-aes-shallow-copying.txt

Refactor AES context to be shallow-copyable

2022-06-29 16:17:50 +01:00

fix-ctr-drbg-may-free-invalid-aes-context.txt

ctr_drbg: remove mbedtls_aes_init call from mbedtls_ctr_drbg_seed

2022-08-11 16:38:45 +08:00

LMS.txt

Update LMS/LMOTS documentation

2022-10-13 14:28:20 +01:00

mbedtls_asn1_type_free.txt

Deprecate mbedtls_asn1_free_named_data()

2022-11-07 15:42:44 -05:00

mpi-add-0-ub.txt

Fix NULL+0 in addition 0 + 0

2022-11-15 23:00:21 +01:00

mpi-most-negative-sint.txt

Fix undefined behavior with the most negative mbedtls_mpi_sint

2022-11-15 23:02:14 +01:00

muladdc_microblaze.txt

Add Changelog entry

2022-05-30 17:55:13 +01:00

nonversioned-library-soname.txt

Add Changelog entry

2022-08-12 11:02:03 +01:00

platform-setbuf.txt

Include platform.h unconditionally: fixes undefined mbedtls_setbuf

2022-09-15 20:34:50 +02:00

psa_crypto_code_gen_1_1.txt

removed stray whitespaces from change logs

2022-11-03 11:39:36 +01:00

psa_crypto_pake.txt

Update changelog entry for new PSA PAKE feature

2022-08-31 10:49:18 +02:00

psa_rsa_needs_pk.txt

Automatically enable PK_PARSE for RSA in PSA

2022-10-11 21:15:24 +02:00

psa-ecb-ub.txt

Fix NULL+0 undefined behavior in ECB encryption and decryption

2022-11-16 14:41:33 +01:00

remove_ssl_session_compression.txt

Add ChangeLog entry

2022-07-26 16:13:23 +01:00

tls13_sig_alg_selection.txt

Add change log

2022-09-27 19:10:39 +02:00

tls13-misc.txt

Add change log

2022-10-26 15:18:37 +02:00

x509-broken-symlink-handling.txt

Add Changelog entry

2022-07-20 14:37:08 +01:00