Fedora 33: mbedtls 2021-10bfc067d1

Advisories

What Are You Looking For?

Popular Tags

Contribute

Advisories This Week: 359

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-10bfc067d1
2021-08-02 01:06:02.549987
--------------------------------------------------------------------------------

Name        : mbedtls
Product     : Fedora 33
Version     : 2.16.11
Release     : 1.fc33
URL         : https://tls.mbed.org/
Summary     : Light-weight cryptographic and SSL/TLS library
Description :
Mbed TLS is a light-weight open source cryptographic and SSL/TLS
library written in C. Mbed TLS makes it easy for developers to include
cryptographic and SSL/TLS capabilities in their (embedded)
applications with as little hassle as possible.
FOSS License Exception: https://tls.mbed.org/foss-license-exception

--------------------------------------------------------------------------------
Update Information:

- Update to 2.16.11  Release notes:
https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.11
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jul 24 2021 Morten Stevens  - 2.16.11-1
- Update to 2.16.11
* Thu Jul 22 2021 Fedora Release Engineering  - 2.16.9-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jan 26 2021 Fedora Release Engineering  - 2.16.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1943664 - mbedtls: multiple vulnerabilities fixed in mbedtls-2.26.0
        https://bugzilla.redhat.com/show_bug.cgi?id=1943664
  [ 2 ] Bug #1981510 - mbedtls: Local side channel attack on RSA
        https://bugzilla.redhat.com/show_bug.cgi?id=1981510
  [ 3 ] Bug #1981514 - mbedtls: Local side channel attack on static Diffie-Hellman with Montgomery curves
        https://bugzilla.redhat.com/show_bug.cgi?id=1981514
  [ 4 ] Bug #1985311 - CVE-2021-24119 mbedtls: side-channel vulnerability allows system-level-attacker information disclosure
        https://bugzilla.redhat.com/show_bug.cgi?id=1985311
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-10bfc067d1' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 33: mbedtls 2021-10bfc067d1

August 1, 2021

Summary

Mbed TLS is a light-weight open source cryptographic and SSL/TLS

library written in C. Mbed TLS makes it easy for developers to include

cryptographic and SSL/TLS capabilities in their (embedded)

applications with as little hassle as possible.

FOSS License Exception: https://tls.mbed.org/foss-license-exception

Update Information:

- Update to 2.16.11 Release notes: https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.11

Change Log

* Sat Jul 24 2021 Morten Stevens - 2.16.11-1 - Update to 2.16.11 * Thu Jul 22 2021 Fedora Release Engineering - 2.16.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild * Tue Jan 26 2021 Fedora Release Engineering - 2.16.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

References

[ 1 ] Bug #1943664 - mbedtls: multiple vulnerabilities fixed in mbedtls-2.26.0 https://bugzilla.redhat.com/show_bug.cgi?id=1943664 [ 2 ] Bug #1981510 - mbedtls: Local side channel attack on RSA https://bugzilla.redhat.com/show_bug.cgi?id=1981510 [ 3 ] Bug #1981514 - mbedtls: Local side channel attack on static Diffie-Hellman with Montgomery curves https://bugzilla.redhat.com/show_bug.cgi?id=1981514 [ 4 ] Bug #1985311 - CVE-2021-24119 mbedtls: side-channel vulnerability allows system-level-attacker information disclosure https://bugzilla.redhat.com/show_bug.cgi?id=1985311

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-10bfc067d1' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : mbedtls
Product : Fedora 33
Version : 2.16.11
Release : 1.fc33
URL : https://tls.mbed.org/
Summary : Light-weight cryptographic and SSL/TLS library

News

Advisories

HOWTOs

Features

The Story Behind the Linux Security Quick Reference Guide
Benefits & Drawbacks of Using a VPN on Linux
How a WAF Could Improve the Security of Your Linux Web Applications
Installing SurfShark VPN On Kali Linux: The Authoritative Guide
Best Practices for PHP Security

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy