Lucene search
+L

5 matches found

Debian
Debian
added 2022/12/25 11:33 p.m.154 views

[SECURITY] [DLA 3249-1] mbedtls security update

Debian LTS Advisory DLA-3249-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 26, 2022 https://wiki.debian.org/LTS Package : mbedtls Version : 2.16.9-0deb10u1 CVE ID : CVE-2019-16910 CVE-2019-18222 CVE-2020-10932 CVE-2020-10941 CVE-2020-16150...

9.8CVSS6.5AI score0.02569EPSS
Exploits6
NVD
NVD
added 2021/08/23 2:15 a.m.16 views

CVE-2020-36476

An issue was discovered in Mbed TLS before 2.24.0 and before 2.16.8 LTS and before 2.7.17 LTS. There is missing zeroization of plaintext buffers in mbedtlssslread to erase unused application data from memory...

7.5CVSS0.0155EPSS
Exploits0References5
OSV
OSV
added 2021/08/23 2:15 a.m.3 views

UBUNTU-CVE-2020-36476

An issue was discovered in Mbed TLS before 2.24.0 and before 2.16.8 LTS and before 2.7.17 LTS. There is missing zeroization of plaintext buffers in mbedtlssslread to erase unused application data from memory...

7.5CVSS7.1AI score0.0155EPSS
Exploits0References5
CVE
CVE
added 2021/08/23 12:0 a.m.77 views

CVE-2020-36476

CVE-2020-36476 affects Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). The issue is a missing zeroization of plaintext buffers in the TLS code path (mbedtls_ssl_read), which leaves unused application data in memory. Exploitation would rely on memory exposure and could enable...

7.5CVSS7.3AI score0.0155EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2021/08/23 12:0 a.m.23 views

CVE-2020-36476

An issue was discovered in Mbed TLS before 2.24.0 and before 2.16.8 LTS and before 2.7.17 LTS. There is missing zeroization of plaintext buffers in mbedtlssslread to erase unused application data from memory...

7.5CVSS7.4AI score0.0155EPSS
Exploits0
Rows per page
Query Builder