[Bug 1089022] VUL-0: CVE-2018-9988: mbedtls: buffer over-read in ssl_parse_server_key_exchange() that could cause a crash on invalid input.

20 Apr 2018


      http://bugzilla.suse.com/show_bug.cgi?id=1089022
http://bugzilla.suse.com/show_bug.cgi?id=1089022#c3

--- Comment #3 from Swamp Workflow Management <swamp@suse.de> ---
openSUSE-SU-2018:1039-1: An update that fixes two vulnerabilities is now
available.

Category: security (moderate)
Bug References: 1089021,1089022
CVE References: CVE-2018-9988,CVE-2018-9989
Sources used:
openSUSE Leap 42.3 (src):    mbedtls-1.3.19-24.1

-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 1089022] VUL-0: CVE-2018-9988: mbedtls: buffer over-read in ssl_parse_server_key_exchange() that could cause a crash on invalid input.

bugzilla_noreply＠novell.com