7 matches found
Debian dla-4236 : libmbedcrypto3 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4236 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4236-1 [email protected]...
[SECURITY] [DLA 3249-1] mbedtls security update
Debian LTS Advisory DLA-3249-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 26, 2022 https://wiki.debian.org/LTS Package : mbedtls Version : 2.16.9-0deb10u1 CVE ID : CVE-2019-16910 CVE-2019-18222 CVE-2020-10932 CVE-2020-10941 CVE-2020-16150...
openSUSE 15 Security Update : mbedtls (openSUSE-SU-2021:1389-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1389-1 advisory. - In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level administrator attackers to obtai...
openSUSE: Security Advisory for mbedtls (openSUSE-SU-2021:1344-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE 15 Security Update : mbedtls (openSUSE-SU-2021:1344-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1344-1 advisory. - In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level administrator attackers to obtai...
CVE-2021-24119
CVE-2021-24119 affects Trusted Firmware Mbed TLS 2.24.0, where a side-channel in base64 PEM decoding could let system-level attackers (e.g., with admin rights) glean information about secret RSA keys via a controlled-channel/side-channel in isolated environments (notably SGX). Connected advisorie...
[ASA-202107-27] mbedtls: information disclosure
Arch Linux Security Advisory ASA-202107-27 ========================================== Severity: Medium Date : 2021-07-14 CVE-ID : CVE-2021-24119 Package : mbedtls Type : information disclosure Remote : No Link : https://security.archlinux.org/AVG-2153 Summary ======= The package mbedtls before...