Search CVE reports
61 – 62 of 62 results
CVE-2013-4623
Medium priorityThe x509parse_crt function in x509.h in PolarSSL 1.1.x before 1.1.7 and 1.2.x before 1.2.8 does not properly parse certificate messages during the SSL/TLS handshake, which allows remote attackers to cause a denial of service...
2 affected packages
mbedtls, polarssl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
mbedtls | — | — | — | — | Not affected |
polarssl | — | — | — | — | Not in release |
CVE-2013-1621
Medium prioritySome fixes available 1 of 8
Array index error in the SSL module in PolarSSL before 1.2.5 might allow remote attackers to cause a denial of service via vectors involving a crafted padding-length value during validation of CBC padding in a TLS session, a...
2 affected packages
mbedtls, polarssl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
mbedtls | — | — | — | — | Not affected |
polarssl | — | — | — | — | Not in release |