MGASA-2018-0253
- Source
- https://advisories.mageia.org/MGASA-2018-0253.html
- Import Source
- https://advisories.mageia.org/MGASA-2018-0253.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2018-0253
- Related
- Published
- 2018-05-24T16:30:31Z
- Modified
- 2018-05-24T15:51:07Z
- Summary
- Updated mbedtls packages fix security issues
- Details
-
CVE-2018-9988: ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in sslparseserverkeyexchange() that could cause a crash on invalid input. CVE-2018-9989: ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in sslparseserverpskhint() that could cause a crash on invalid input.
- References
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:6 / bctoolbox
Package
- Name
- bctoolbox
- Purl
- pkg:rpm/mageia/bctoolbox?distro=mageia-6
Mageia:6 / hiawatha
Package
- Name
- hiawatha
- Purl
- pkg:rpm/mageia/hiawatha?distro=mageia-6
Mageia:6 / mbedtls
Package
- Name
- mbedtls
- Purl
- pkg:rpm/mageia/mbedtls?distro=mageia-6
Mageia:6 / shadowsocks-libev
Package
- Name
- shadowsocks-libev
- Purl
- pkg:rpm/mageia/shadowsocks-libev?distro=mageia-6
Mageia:6 / dolphin-emu
Package
- Name
- dolphin-emu
- Purl
- pkg:rpm/mageia/dolphin-emu?distro=mageia-6