| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2021-24119 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in b ... |
| CVE-2020-36478 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 L ... |
| CVE-2020-36477 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | An issue was discovered in Mbed TLS before 2.24.0. The verification of ... |
| CVE-2020-36476 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 L ... |
| CVE-2020-36475 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 L ... |
| CVE-2020-36426 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtls_x509_cr ... |
| CVE-2020-36425 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.24.0. It incorrectly ... |
| CVE-2020-36424 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.24.0. An attacker can ... |
| CVE-2020-36423 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.23.0. A remote attack ... |
| CVE-2020-36422 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.23.0. A side channel ... |
| CVE-2020-36421 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.23.0. Because of a si ... |
| CVE-2020-16150 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/s ... |
| CVE-2020-10941 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive inform ... |
| CVE-2020-10932 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before ... |
| CVE-2019-18222 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 a ... |
| CVE-2019-16910 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when dete ... |
| CVE-2018-19608 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Arm Mbed TLS before 2.14.1, before 2.7.8, and before 2.1.17 allows a l ... |
| CVE-2018-9989 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffe ... |
| CVE-2018-9988 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffe ... |
| Bug | Description |
|---|
| CVE-2018-0498 | ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows loc ... |
| CVE-2018-0497 | ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows rem ... |
| CVE-2018-0488 | ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the ... |
| CVE-2018-0487 | ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows rem ... |
| CVE-2017-18187 | In ARM mbed TLS before 2.7.0, there is a bounds-check bypass through a ... |
| CVE-2017-14032 | ARM mbed TLS before 1.3.21 and 2.x before 2.1.9, if optional authentic ... |
| CVE-2017-2784 | An exploitable free of a stack pointer vulnerability exists in the x50 ... |
| CVE-2015-8036 | Heap-based buffer overflow in ARM mbed TLS (formerly PolarSSL) 1.3.x b ... |
| CVE-2015-5291 | Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed ... |