8 matches found
Debian dla-4236 : libmbedcrypto3 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4236 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4236-1 [email protected]...
Linux Distros Unpatched Vulnerability : CVE-2021-44732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtlssslsetsession failure. CVE-2021-44732 Note that Nessus...
[SECURITY] [DLA 3249-1] mbedtls security update
Debian LTS Advisory DLA-3249-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 26, 2022 https://wiki.debian.org/LTS Package : mbedtls Version : 2.16.9-0deb10u1 CVE ID : CVE-2019-16910 CVE-2019-18222 CVE-2020-10932 CVE-2020-10941 CVE-2020-16150...
Mageia: Security Advisory (MGASA-2022-0017)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated mbedtls packages fix security vulnerability
This update provides Mbed TLS 2.16.12, with a number of bug fixes and a security fix. Mbed TLS has a double free in certain out-of-memory conditions, as demonstrated by an mbedtlssslsetsession failure. CVE-2021-44732...
FreeBSD : Mbed TLS -- Potential double-free after an out of memory error (c1b2b492-6999-11ec-a50c-001cc0382b2f)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c1b2b492-6999-11ec-a50c-001cc0382b2f advisory. - Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an...
CVE-2021-44732
CVE-2021-44732 affects MBed TLS before 3.0.1, with a double free in certain out-of-memory conditions triggered by mbedtls_ssl_set_session(). The issue is documented across several advisories (Debian, Mageia, Gentoo, Astra Linux) and is fixed in newer releases (e.g., MBed TLS 3.0.1+; Debian 2.16.9...
CVE-2021-44732
Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtlssslsetsession failure...