AVG-742

Package mbedtls
Status Fixed
Severity High
Type information disclosure
Affected 2.8.0-1
Fixed 2.12.0-1
Current 2.13.0-1 [community]
Ticket None
Created Sat Jul 28 14:23:19 2018
Issue Severity Remote Type Description
CVE-2018-0497 High Yes Information disclosure
A remote plaintext recovery security issue has been found in Mbed TLS before 2.12.0, 2.7.5 or 2.1.14, when using a CBC based ciphersuite. To be able to...
Notes
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-02