AVG-742 log
| Package | mbedtls |
| Status | Fixed |
| Severity | High |
| Type | information disclosure |
| Affected | 2.8.0-1 |
| Fixed | 2.12.0-1 |
| Current | 3.5.2-1 [extra] |
| Ticket | None |
| Created | Sat Jul 28 14:23:19 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-0497 | High | Yes | Information disclosure | A remote plaintext recovery security issue has been found in Mbed TLS before 2.12.0, 2.7.5 or 2.1.14, when using a CBC based ciphersuite. To be able to... |
| Notes |
|---|
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-02 |