PT-2024-20052 · Mbed Tls +1 · Mbed Tls +1

Name of the Vulnerable Software and Affected Versions: Mbed TLS version 3.5.1 Description: An issue was discovered in Mbed TLS where there is persistent handshake denial if a client sends a TLS 1.3 ClientHello without extensions. Recommendations: For Mbed TLS version 3.5.1, consider updating to a...

DEBIAN-CVE-2019-15699

An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 TLS 1.2 packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of t...