490 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-26529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mgtlsinit function in Cesanta Mongoose HTTPS server 7.0 and 6.7-6.18 compiled with mbedTLS support is vulnerable to remote OOB write attack via connection...
curl: CURLOPT_PROXY_CRLFILE / CURLOPT_PROXY_ISSUERCERT / CURLOPT_PROXY_ISSUERCERT_BLOB silently ignored on backends that don't support them
From the Mythos report 2026-05-06 F1. CURLOPTPROXYCRLFILE / CURLOPTPROXYISSUERCERT / CURLOPTPROXYISSUERCERTBLOB silently ignored on backends that don't support them — severity Low https://github.com/curl/curl/blob/455bebc2c7/lib/setopt.cL1786-L1797...
curl: mbedTLS private-key blob null-termination asymmetry in lib/vtls/mbedtls.c (mbed_load_privkey)
Summary: In lib/vtls/mbedtls.c, function mbedloadprivkey lines 653-738 passes raw sslkeyblob-data and sslkeyblob-len directly to mbedtlspkparsekey at lines 706-708 mbedTLS 4.x branch and 718-722 mbedTLS 3.x branch, without ensuring null-termination. The mbedTLS API contract for mbedtlspkparsekey...
ROOT-OS-DEBIAN-12-CVE-2025-27809 CVE-2025-27809 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-27809 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-34875 CVE-2026-34875 in rootio-mbedtls - Patched by Root
Root has patched CVE-2026-34875 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-47917 CVE-2025-47917 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-47917 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-34872 CVE-2026-34872 in rootio-mbedtls - Patched by Root
Root has patched CVE-2026-34872 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-59438 CVE-2025-59438 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-59438 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-52497 CVE-2025-52497 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-52497 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-52496 CVE-2025-52496 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-52496 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-34873 CVE-2026-34873 in rootio-mbedtls - Patched by Root
Root has patched CVE-2026-34873 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-27810 CVE-2025-27810 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-27810 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-48965 CVE-2025-48965 in rootio-mbedtls - Patched by Root
Root has patched CVE-2025-48965 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-23170 CVE-2024-23170 in rootio-mbedtls - Patched by Root
Root has patched CVE-2024-23170 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-23775 CVE-2024-23775 in rootio-mbedtls - Patched by Root
Root has patched CVE-2024-23775 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-28960 CVE-2024-28960 in rootio-mbedtls - Patched by Root
Root has patched CVE-2024-28960 in the rootio-mbedtls package for Root:Debian:12. Multiple fixed versions available...
Fedora 44 : mbedtls (2026-3a9536df40)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3a9536df40 advisory. Update to 3.6.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...
[SECURITY] [DLA 4551-1] mbedtls security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4551-1 [email protected] https://www.debian.org/lts/security/ Andrej Shadura April 27, 2026 https://wiki.debian.org/LTS -...
Debian dla-4551 : libmbedcrypto3 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4551 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4551-1 [email protected]...
[SECURITY] Fedora 44 Update: mbedtls-3.6.6-1.fc44
Mbed TLS is a light-weight open source cryptographic and SSL/TLS library written in C. Mbed TLS makes it easy for developers to include cryptographic and SSL/TLS capabilities in their embedded applications with as little hassle as possible...