Advisories ยป MGASA-2022-0017

Updated mbedtls packages fix security vulnerability

Publication date: 15 Jan 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-44732

Description

This update provides Mbed TLS 2.16.12, with a number of bug fixes and a
security fix.
Mbed TLS has a double free in certain out-of-memory conditions, as
demonstrated by an mbedtls_ssl_set_session() failure. (CVE-2021-44732)
                

References

SRPMS

8/core