logo
DATABASE RESOURCES PRICING ABOUT US

mbedtls - security update

Description

Several vulnerabilities were discovered in mbed TLS, a lightweight crypto and SSL/TLS library, that allowed a remote attacker to either cause a denial-of-service by application crash, or execute arbitrary code. For the stable distribution (stretch), these problems have been fixed in version 2.4.2-1+deb9u2. We recommend that you upgrade your mbedtls packages. For the detailed security status of mbedtls please refer to its security tracker page at: [\ https://security-tracker.debian.org/tracker/mbedtls](https://security-tracker.debian.org/tracker/mbedtls)


Affected Software


CPE Name Name Version
mbedtls 2.4.2-1+deb9u1
mbedtls 2.4.2-1
mbedtls 2.4.2-1+deb9u1~bpo8+1

Related