Lucene search
+L

4 matches found

debian
debian
added 2022/12/25 11:33 p.m.154 views

[SECURITY] [DLA 3249-1] mbedtls security update

Debian LTS Advisory DLA-3249-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 26, 2022 https://wiki.debian.org/LTS Package : mbedtls Version : 2.16.9-0deb10u1 CVE ID : CVE-2019-16910 CVE-2019-18222 CVE-2020-10932 CVE-2020-10941 CVE-2020-16150...

9.8CVSS6.5AI score0.02569EPSS
Exploits6
nessus
nessus
added 2019/10/07 12:0 a.m.36 views

Fedora 29 : mbedtls (2019-89891f3e4a)

Update to 2.16.3 - Side channel attack on deterministic ECDSA CVE-2019-16910 Release notes: https://tls.mbed.org/tech-updates/releases/mbedtls-2.16.3-and-2.7.12-r eleased Security Advisory: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security -advisory-2019-10 Note that Tenable...

5.3CVSS5.7AI score0.01773EPSS
Exploits0References3
nessus
nessus
added 2019/10/07 12:0 a.m.33 views

Fedora 30 : mbedtls (2019-07940971b2)

Update to 2.16.3 - Side channel attack on deterministic ECDSA CVE-2019-16910 Release notes: https://tls.mbed.org/tech-updates/releases/mbedtls-2.16.3-and-2.7.12-r eleased Security Advisory: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security -advisory-2019-10 Note that Tenable...

5.3CVSS5.7AI score0.01773EPSS
Exploits0References3
cve
cve
added 2019/09/26 12:0 a.m.121 views

CVE-2019-16910

Arm Mbed TLS prior to 2.19.0 and Arm Mbed Crypto prior to 2.0.0 are affected by CVE-2019-16910. When deterministic ECDSA is enabled, the RNG blinding uses insufficient entropy, enabling a side-channel based attack that could recover a private key if the same message is signed repeatedly. The issu...

5.3CVSS5.3AI score0.01773EPSS
Exploits0References7Affected Software3
Rows per page
Query Builder