SUSE CVE-2012-2130

A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1 due to a weak encryption error when generating Diffie-Hellman values and RSA keys...

SUSE CVE-2015-1182

The asn1getsequenceof function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1sequence linked list, which allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted...

UBUNTU-CVE-2015-5291

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long hostname to the server name indication SNI...

PolarSSL 'asn1parse.c' Remote Code Execution Vulnerability

PolarSSL source code is the smallest ssl code base. Efficient, easy to port and integrate. Especially suitable for embedded applications. A remote code execution vulnerability exists in PolarSSL 'asn1parse.c', which can be exploited by an attacker to execute arbitrary code in the context of an...

PT-2013-1213 · Openssl +6 · Polarssl +8

Name of the Vulnerable Software and Affected Versions: OpenSSL versions prior to 1.3.0 OpenJDK versions prior to 1.3.0 PolarSSL versions prior to 1.3.0 Description: The issue concerns the TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, which do not properly consider timing side-channe...