2 matches found
SUSE CVE-2015-8036
Heap-based buffer overflow in ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long session ticket name to the session ticket extension, which is not properly handl...
PT-2015-7712
Name of the Vulnerable Software and Affected Versions ARM mbed TLS versions 1.3.x through 1.3.13 ARM mbed TLS versions 2.x through 2.1.1 Description The issue is related to a heap-based buffer overflow in ARM mbed TLS, which can be triggered by remote SSL servers. This occurs when a long session...