5 matches found
[SECURITY] [DLA 1518-1] polarssl security update
Package : polarssl Version : 1.3.9-2.1+deb8u4 CVE ID : CVE-2013-0169 CVE-2018-0497 CVE-2018-0498 CVE-2018-9988 CVE-2018-9989 Debian Bug : Two vulnerabilities were discovered in polarssl, a lightweight crypto and SSL/TLS library nowadays continued under the name mbedtls which could result in plain...
Debian DSA-4296-1 : mbedtls - security update
Two vulnerabilities were discovered in mbedtls, a lightweight crypto and SSL/TLS library which could result in plain text recovery via side-channel attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-429...
[SECURITY] [DSA 4296-1] mbedtls security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4296-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 16, 2018 https://www.debian.org/security/faq -...
DEBIAN-CVE-2018-0498
ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows local users to achieve partial plaintext recovery for a CBC based ciphersuite via a cache-based side-channel attack...
CVE-2018-0498
mbed TLS (ARM PolarSSL) vulnerability CVE-2018-0498 affects CBC-based ciphersuites and allows partial plaintext recovery via a cache-based side-channel attack. Affected versions are before 2.12.0, before 2.7.5, and before 2.1.14. Remediation is to upgrade to patched releases (e.g., 2.12.0+ and ne...