14 matches found
SUSE SLES15 Security Update : ovmf (SUSE-SU-2026:1952-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1952-1 advisory. This update for ovmf fixes the following issues - CVE-2026-25833: mbedtls: buffer underflow in x509inetptonipv6 bsc1261476. -...
[SECURITY] [DLA 4551-1] mbedtls security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4551-1 [email protected] https://www.debian.org/lts/security/ Andrej Shadura April 27, 2026 https://wiki.debian.org/LTS -...
Debian dla-4551 : libmbedcrypto3 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4551 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4551-1 [email protected]...
Fedora 45 : micropython (2026-d619d8d077)
The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-d619d8d077 advisory. Automatic update for micropython-1.28.0-1.fc45. Changelog Mon Apr 6 2026 Lumr Balhar - 1.28.0-1 - Update to 1.28.0 - Security fix for CVE-2026-1998 ...
Fedora: Security Advisory (FEDORA-2025-dce2ac8ea0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : mbedtls (2024-d4bcb0da46)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-d4bcb0da46 advisory. - Update to 2.28.9 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-2.28.9 Tenable has extracted the preceding description block...
Security update for mbedtls (moderate)
openSUSE Security Update: Security update for mbedtls Announcement ID: openSUSE-SU-2024:0037-1 Rating: moderate References: 1219336 Cross-References: CVE-2024-23170 Affected Products: openSUSE Backports SLE-15-SP5 An update that fixes one vulnerability is now available. Description: This update f...
OPENSUSE-SU-2021:0397-1 Security update for mbedtls
This update for mbedtls fixes the following issues: - mbedtls was updated to version 2.16.9 - CVE-2020-10932: Fixed side channel in ECC code that allowed an adversary with access to precise enough timing and memory access information typically an untrusted operating system attacking a secure...
OPENSUSE-SU-2021:0384-1 Security update for mbedtls
This update for mbedtls fixes the following issues: - mbedtls was updated to version 2.16.9 - CVE-2020-10932: Fixed side channel in ECC code that allowed an adversary with access to precise enough timing and memory access information typically an untrusted operating system attacking a secure...
MGASA-2018-0163 Updated mbedtls and related packages fix security vulnerabilities
The mbedtls package has been updated to fix several security issues. Fixed a heap corruption issue in the implementation of the truncated HMAC extension. When the truncated HMAC extension is enabled and CBC is used, sending a malicious application packet could be used to selectively corrupt 6 byt...
OPENSUSE-SU-2017:2736-1 Security update for mbedtls
This update for mbedtls fixes the following issues: - CVE-2017-14032: Possible authentication bypass of peer based authentication when auth mode is configured as 'optional' boo1056544...
OPENSUSE-SU-2017:0792-1 Security update for mbedtls
This update to mbedtls 1.3.19 fixes security issues and bugs. The following vulnerability was fixed: CVE-2017-2784: A remote user could have used a specially crafted certificate to cause mbedtls to free a buffer allocated on the stack when verifying the validity of public key with a secp224k1...
OPENSUSE-SU-2017:0790-1 Security update for mbedtls
This update to mbedtls 1.3.19 fixes security issues and bugs. The following vulnerability was fixed: CVE-2017-2784: A remote user could have used a specially crafted certificate to cause mbedtls to free a buffer allocated on the stack when verifying the validity of public key with a secp224k1...
MGASA-2016-0249 Updated mbedtls packages fix security vulnerabilities
Updated mbedtls packages fix security vulnerabilities: The mbedtls package has been updated to version 1.3.17, which fixes a few minor security issues in mbedtlsrsarsaespkcs1v15encrypt and mbedtlsrsarsaesoaepencrypt and fixes a handful of other bugs as well. See the upstream release announcement...