Lucene search
+L

5 matches found

Fedora
Fedora
added 2026/04/10 1:1 a.m.8 views

[SECURITY] Fedora 43 Update: mbedtls-3.6.6-1.fc43

Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their embedded applications with as little hassle as possible...

9.1CVSS5.9AI score0.00308EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/04/01 7:16 p.m.15 views

CVE-2026-34871

An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA-Crypto before 1.1.0. There is a Predictable Seed in a Pseudo-Random Number Generator PRNG...

6.7CVSS5.9AI score0.00192EPSS
Exploits0References1
OSV
OSV
added 2026/04/01 12:0 a.m.2 views

CVE-2026-25835

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator PRNG...

7.7CVSS5.9AI score0.0017EPSS
Exploits0References4
OSV
OSV
added 2025/07/04 3:15 p.m.8 views

UBUNTU-CVE-2025-49601

In MbedTLS 3.3.0 before 3.6.4, mbedtlslmsimportpublickey does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a possible out-of-bounds read on truncated input. Specifically, an out-of-bounds read in mbedtlslmsimportpublickey allows context-dependent...

6.5CVSS6AI score0.00259EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.3 views

SUSE CVE-2017-2784

An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ARM mbed TLS before 1.3.19, 2.x before 2.1.7, and 2.4.x before 2.4.2. A specially crafted x509 certificate, when parsed by mbed TLS library, can cause an invalid free of a stack pointer leading to ...

8.1CVSS8.4AI score0.0339EPSS
Exploits2References5
Rows per page
Query Builder