| Manuel Pégourié-Gonnard | 37e5999 | 2022-06-10 09:25:01 +0200 | [diff] [blame] | 1 | Security |
| 2 | * Fix a potential heap buffer overread in TLS 1.2 server-side when | ||||
| 3 | MBEDTLS_USE_PSA_CRYPTO is enabled, an opaque key (created with | ||||
| 4 | mbedtls_pk_setup_opaque()) is provisioned, and a static ECDH ciphersuite | ||||
| 5 | is selected. This may result in an application crash. No path to | ||||
| 6 | information leak has been identified. | ||||