Updated mbedtls packages fix security vulnerability
Publication date: 25 Apr 2024Modification date: 25 Apr 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-28960
Description
An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory. (CVE-2024-28960)
References
SRPMS
9/core
- mbedtls-2.28.8-1.mga9