Skip to main content
Vulnerability Intelligence
Platform
Solutions
Customers
Resources
Company
Login
Get Demo
Vulnerability Intelligence
openSUSE-SU-2022:10247-1
openSUSE-SU-2022:10247-1
UNKNOWN
Security update for mbedtls
Published Dec 22, 2022
Modified 3 years ago
Fix available
Details
This update for mbedtls fixes the following issues:
CVE-2022-35409: Fixed buffer overread in DTLS ClientHello parsing (boo#1201581).
Affected Packages
(11 packages)
libmbedcrypto3
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedcrypto3-32bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedcrypto3-64bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedtls12
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedtls12-32bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedtls12-64bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedx509-0
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedx509-0-32bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
libmbedx509-0-64bit
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
mbedtls
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Fixed in:
2.16.9-bp153.2.8.1
Show 1 more packages
References
REPORT
https://bugzilla.suse.com/1201581
ADVISORY
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3NAO4EU3XHQJB2IY7LNSERGELWFEJAUJ/
WEB
https://www.suse.com/security/cve/CVE-2021-35409
WEB
https://www.suse.com/security/cve/CVE-2022-35409
Upstream
CVE-2021-35409
CVE-2022-35409
Related
CVE-2021-35409
CVE-2022-35409
Ecosystems
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Timeline
Published
Dec 22, 2022
Modified
Dec 22, 2022
openSUSE-SU-2022:10247-1 | Mondoo Vulnerability Intelligence