VDB

GCVE-110-MAGEIA-2017-30

GCVE-110-MAGEIA-2017-30
Advisory Published
Vulnetix · Advisory published January 29, 2017
The mbedtls package has been updated to version 1.3.18, which removes a non-default configuration option that could lead to session key recovery in very long TLS sessions and fixes a potential stack corruption that cannot be triggered remotely. It also fixes several bugs. See the upstream release announcement for details.

Affected Products

VendorProductVersionsPlatforms
Mageiambedtls0 (affected), 1.3.18-1.mga5 (unaffected), 0 (affected), 1.3.18-1.mga5 (unaffected)
Mageiawine0 (affected), 2.0.2-1.mga6 (unaffected)

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›