Oval Definition:
oval:org.opensuse.security:def:202145450
Revision Date
:
2022-06-30
Version
:
1
Title
:
CVE-2021-45450
Description
:
In Mbed TLS before 2.28.0 and 3.x before 3.1.0, psa_cipher_generate_iv and psa_cipher_encrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
Mitre CVE-2021-45450
SUSE CVE-2021-45450
Platform(s)
:
openSUSE Tumbleweed
Product(s)
:
Definition Synopsis
openSUSE Tumbleweed is installed
AND
Package Information
libmbedcrypto7-2.28.0-1.1 is installed
OR
libmbedcrypto7-32bit-2.28.0-1.1 is installed
OR
libmbedtls14-2.28.0-1.1 is installed
OR
libmbedtls14-32bit-2.28.0-1.1 is installed
OR
libmbedx509-1-2.28.0-1.1 is installed
OR
libmbedx509-1-32bit-2.28.0-1.1 is installed
OR
mbedtls-devel-2.28.0-1.1 is installed
BACK