Zeroising of plaintext buffers to erase unused application data from memory

Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2026-01-05 22:19:11 +01:00 · 2020-07-15 10:55:00 +02:00 · 2020-07-15 10:55:00 +02:00 · 3eaa10389d
commit 3eaa10389d
parent 3a1944a187
2 changed files with 8 additions and 0 deletions
--- a/ChangeLog.d/zeroising_of_plaintext_buffer.txt
+++ b/ChangeLog.d/zeroising_of_plaintext_buffer.txt
@ -0,0 +1,4 @@
+Security
+   * Zeroising of plaintext buffers in mbedtls_ssl_read() to erase unused
+     application data from memory. Reported in #689 by
+     Johan Uppman Bruce of Sectra.