6 matches found
Fedora 37 : mbedtls (2022-1dd9dc5140)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-1dd9dc5140 advisory. Update to 2.28.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...
Fedora 36 : mbedtls (2022-ff582c5b0d)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ff582c5b0d advisory. Update to 2.28.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...
Fedora: Security Advisory for mbedtls (FEDORA-2022-1dd9dc5140)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-45451
In Mbed TLS before 3.1.0, psaaeadgeneratenonce allows policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application...
CVE-2021-45451
CVE-2021-45451 affects Mbed TLS prior to 3.1.0. The flaw is in psa_aead_generate_nonce, which can enable policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted app. The vulnerability is tied to how nonces are generated for AEAD operations...
CVE-2021-45451
In Mbed TLS before 3.1.0, psaaeadgeneratenonce allows policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application...