Fedora 37 : mbedtls (2022-1dd9dc5140)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-1dd9dc5140 advisory. Update to 2.28.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Fedora 36 : mbedtls (2022-ff582c5b0d)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ff582c5b0d advisory. Update to 2.28.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Fedora: Security Advisory for mbedtls (FEDORA-2022-1dd9dc5140)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-45450

creationtimestamp| type| source ---|---|--- 2021-12-21 12:22:15+00:00| seen| https://t.me/cibsecurity/34412...

CVE-2021-45450

In Mbed TLS before 2.28.0 and 3.x before 3.1.0, psaciphergenerateiv and psacipherencrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application...

CVE-2021-45450

In Mbed TLS, versions before 2.28.0 and before 3.1.0 have a vulnerability in PSA cipher functions where psa_cipher_generate_iv and psa_cipher_encrypt can expose policy bypass or oracle-based decryption if the output buffer is accessible to an untrusted application. The issue affects older 2.x and...