[gnutls-devel] GnuTLS | Behavioral PKCS#1 v1.5 decryption oracle (Ok/Err bit) (#1901)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Mon Jun 8 01:50:10 CEST 2026
Daiki Ueno commented: https://gitlab.com/gnutls/gnutls/-/work_items/1901#note_3430852743
Although the implicit rejection guidance is less error-prone for the applications, it is possible to write a safe application with the explicit rejection API, as we do in RSA key exchange in the library (see #1050 and co.). Therefore I don't consider this a security issue but an enhancement request to provide an implicit rejection API.
cc @tomato42
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/work_items/1901#note_3430852743
You're receiving this email because of your account on gitlab.com. Unsubscribe from this thread: https://gitlab.com/-/sent_notifications/5-8n4u9cnuv8p79p5p0t40j65n0-a84t7/unsubscribe | Manage all notifications: https://gitlab.com/-/profile/notifications | Help: https://gitlab.com/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20260607/7c5db195/attachment-0001.html>
More information about the Gnutls-devel
mailing list