Lucene search
K

5 matches found

Debian
Debian
added 2022/12/25 11:33 p.m.79 views

[SECURITY] [DLA 3249-1] mbedtls security update

Debian LTS Advisory DLA-3249-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 26, 2022 https://wiki.debian.org/LTS Package : mbedtls Version : 2.16.9-0deb10u1 CVE ID : CVE-2019-16910 CVE-2019-18222 CVE-2020-10932 CVE-2020-10941 CVE-2020-16150...

9.8CVSS6.5AI score0.02569EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/12/23 12:0 a.m.29 views

openSUSE 15 Security Update : mbedtls (openSUSE-SU-2022:10247-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10247-1 advisory. - An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0. In some configurations, an unauthenticated attacker can send an...

9.1CVSS8.4AI score0.01831EPSS
Exploits1References6
OSV
OSV
added 2022/12/22 12:33 p.m.8 views

OPENSUSE-SU-2022:10247-1 Security update for mbedtls

This update for mbedtls fixes the following issues: - CVE-2022-35409: Fixed buffer overread in DTLS ClientHello parsing boo1201581...

9.1CVSS9.3AI score0.01831EPSS
Exploits1References4
OSV
OSV
added 2022/07/15 2:15 p.m.4 views

ALPINE-CVE-2022-35409

An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0. In some configurations, an unauthenticated attacker can send an invalid ClientHello message to a DTLS server that causes a heap-based buffer over-read of up to 255 bytes. This can cause a server crash or possibly information...

9.1CVSS7AI score0.01831EPSS
Exploits1References1
CVE
CVE
added 2022/07/15 12:0 a.m.120 views

CVE-2022-35409

Mbed TLS DTLS heap over-read CVE-2022-35409: unauthenticated clients can send a malformed ClientHello to a DTLS server with MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE enabled and MBEDTLS_SSL_IN_CONTENT_LEN below a config-dependent threshold, causing a heap-based over-read of up to 255 bytes and possibly ...

9.1CVSS9.1AI score0.01831EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder