Advisories ยป MGASA-2019-0027

Updated mbedtls packages fix security vulnerability

Publication date: 10 Jan 2019
Modification date: 10 Jan 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-19608

Description

A vulnerability was found in mbedTLS which allows a local unprivileged
attacker to recover the plaintext of RSA decryption, which is used in
RSA-without-(EC)DH(E) cipher suites (CVE-2018-19608).
                

References

SRPMS

6/core