Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Mageia 8: MGASA-2022-0456 Moderate: Mbedtls Memory Access Vulnerability

mageia
Calendar Grey November 8, 2022
Dist Mageia Esm H88
An official security notice regarding the mbedtls component of Mageia has been issued, tackling a critical buffer overread flaw, released on November 8, 2022.
An unauthenticated remote host could send an invalid ClientHello message in which the declared length of the cookie extends past the end of the message

Summary

An unauthenticated remote host could send an invalid ClientHello message in which the declared length of the cookie extends past the end of the message. A DTLS server with MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE enabled would read past the end of the message up to the declared length of the cookie. This could cause a buffer overread of up to 255 bytes on the heap in vulnerable DTLS servers, which may lead to a crash or to information disclosure via the cookie check function (CVE-2022-35409).
This issue has been patched, backporting a fix from upstream's 2.28.0 release.

References

- https://bugs.mageia.org/show_bug.cgi?id=31058

- - https://github.com/Mbed-TLS/mbedtls/commit/e5af9fabf7d68e3807b6ea78792794b8352dbba2

- https://www.cve.org/CVERecord?id=CVE-2022-35409

Topics%20covered

Topics Covered

security advisory moderate remote code execution mbedtls buffer overread Mageia

Resolution

SRPMS

- 8/core/mbedtls-2.16.12-1.1.mga8

Publication date: 08 Nov 2022
URL: https://advisories.mageia.org/MGASA-2022-0415.html
Type: security
CVE: CVE-2022-35409

Topics%20covered

Topics Covered

security advisory moderate remote code execution mbedtls buffer overread Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here