Debian
mbedtls package

mbedtls 2.4.2-1+deb9u2 source package in Debian

Changelog

mbedtls (2.4.2-1+deb9u2) stretch-security; urgency=high

  * Fix CVE-2017-18187:
    Unsafe bounds check in ssl_parse_client_psk_identity().
  * Fix CVE-2018-0487:
    Buffer overflow when verifying RSASSA-PSS signatures. (Closes: #890288)
  * Fix CVE-2018-0488:
    Buffer overflow when truncated HMAC is enabled. (Closes: #890287)

 -- James Cowgill <email address hidden>  Mon, 05 Mar 2018 18:24:47 +0000

Upload details

Uploaded by:: James Cowgill on 2018-07-14

Uploaded to:: Stretch

Original maintainer:: James Cowgill

Architectures:: any all

Section:: misc

Urgency:: Very Urgent

See full publishing history Publishing

Series	Pocket	Published	Component	Section

Builds

Downloads

File	Size	SHA-256 Checksum
mbedtls_2.4.2-1+deb9u2.dsc	2.2 KiB	da25c581f6287a26542490736310f8df993893683545600ae9df95be4e412914
mbedtls_2.4.2.orig.tar.gz	1.8 MiB	17dd98af7478aadacc480c7e4159e447353b5b2037c1b6d48ed4fd157fb1b018
mbedtls_2.4.2-1+deb9u2.debian.tar.xz	18.5 KiB	a7e72e80bdeb44f90555348ad40d5e31ed5f01d66d1583bd9a0ebb11ef7ad7fc

No changes file available.

Debianmbedtls package

mbedtls 2.4.2-1+deb9u2 source package in Debian

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Binary packages built by this source

Debian
mbedtls package