ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in sslparseserverpskhint() that could cause a crash on invalid input.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "2.8.0-1", "binary_name": "libmbedcrypto1" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedcrypto1-dbgsym" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedtls-dev" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedtls-doc" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedtls10" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedtls10-dbgsym" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedx509-0" }, { "binary_version": "2.8.0-1", "binary_name": "libmbedx509-0-dbgsym" } ] }