pkg:Alpine/mbedtls

All known vulnerabilities

• CRITICAL9.8CVE-2025-47917mbedtls - security update
  from 0, < 3.6.4-r0
• CRITICAL9.8CVE-2024-49195Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkwrite when writing an opaque key pair
  from 0, < 3.6.2-r0
• CRITICAL9.8CVE-2024-45159An issue was discovered in Mbed TLS 3.x before 3.6.1.
  from 0, < 3.6.1-r0
• CRITICAL9.8CVE-2024-45158An issue was discovered in Mbed TLS 3.6 before 3.6.1.
  from 0, < 3.6.1-r0
• CRITICAL9.8CVE-2021-44732Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.
  from 0, < 2.16.12-r0
• CRITICAL9.8CVE-2017-18187polarssl - security update
  from 0, < 2.7.0-r0
• CRITICAL9.8CVE-2018-0488ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the truncated HMAC extension and CBC are used, allows remote attackers to…
  from 0, < 2.7.0-r0
• CRITICAL9.8CVE-2018-0487ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service…
  from 0, < 2.7.0-r0
• CRITICAL9.1CVE-2022-35409An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0.
  from 0, < 2.28.1-r0
• HIGH8.2CVE-2024-28960An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto.
  from 0, < 2.28.8-r0
• HIGH8.1CVE-2017-14032mbedtls - security update
  from 0, < 2.6.0-r0
• HIGH8.1CVE-2017-2784An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ARM mbed TLS before 1.3.19, 2.x before…
  from 0, < 2.4.2-r0
• HIGH7.8CVE-2025-52496Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur.
  from 0, < 3.6.4-r0
• HIGH7.7CVE-2026-25835Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).
  from 0, < 3.6.6-r0
• HIGH7.5CVE-2026-25833Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow in the x509_inet_pton_ipv6() function
  from 0, < 3.6.6-r0
• HIGH7.5CVE-2025-48965Mbed TLS before 3.6.4 has a NULL pointer dereference because mbedtls_asn1_store_named_data can trigger conflicting data with val.p of NULL…
  from 0, < 3.6.4-r0
• HIGH7.5CVE-2024-23775Integer Overflow vulnerability in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2, allows attackers to cause a denial of service (DoS) via…
  from 0, < 2.28.7-r0
• HIGH7.5CVE-2023-43615Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.
  from 0, < 2.28.5-r0
• MEDIUM6.5CVE-2026-25834Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.
  from 0, < 3.6.6-r0
• MEDIUM6.5CVE-2025-49601In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_import_public_key does not check that the input buffer is at least 4 bytes before reading a 32-b…
  from 0, < 3.6.4-r0
• MEDIUM6.2CVE-2025-54764Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_g…
  from 0, < 3.6.5-r0
• MEDIUM5.9CVE-2018-0497mbedtls - security update
  from 0, < 2.12.0-r0
• MEDIUM5.5CVE-2024-23170An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2.
  from 0, < 2.28.7-r0
• MEDIUM5.5CVE-2020-16150A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attack…
  from 0, < 2.16.8-r0
• MEDIUM5.4CVE-2025-27809Mbed TLS before 2.28.10 and 3.x before 3.6.3, on the client side, accepts servers that have trusted certificates for arbitrary hostnames un…
  from 0, < 2.28.10-r0
• MEDIUM5.3CVE-2025-59438Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.
  from 0, < 3.6.5-r0
• MEDIUM5.3CVE-2019-16910mbedtls - security update
  from 0, < 2.16.3-r0
• MEDIUM5.1CVE-2024-45157An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1, in which the user-selected algorithm is not used.
  from 0, < 2.28.9-r0
• MEDIUM4.9CVE-2025-49600In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_verify may accept invalid signatures if hash computation fails and internal errors go unchecked,…
  from 0, < 3.6.4-r0
• MEDIUM4.8CVE-2025-52497Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in mbedtls_pem_read_buffer and two mbedtls_pk_parse functions…
  from 0, < 3.6.4-r0
• MEDIUM4.8CVE-2025-27810Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory…
  from 0, < 2.28.10-r0
• MEDIUM4.7CVE-2020-10932An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15.
  from 0, < 2.16.6-r0
• MEDIUM4.7CVE-2019-18222The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before…
  from 0, < 2.16.4-r0
• MEDIUM4.7CVE-2018-19608Arm Mbed TLS before 2.14.1, before 2.7.8, and before 2.1.17 allows a local unprivileged attacker to recover the plaintext of RSA decryption…
  from 0, < 2.14.1-r0
• MEDIUM4.7CVE-2018-0498ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows local users to achieve partial plaintext recovery (for a CBC based ciphe…
  from 0, < 2.12.0-r0
• LOW3.7CVE-2025-49087In Mbed TLS 3.6.1 through 3.6.3 before 3.6.4, a timing discrepancy in block cipher padding removal allows an attacker to recover the plaint…
  from 0, < 3.6.4-r0