Wind River Support Network

HomeDefectsLIN1023-3516

Fixed

LIN1023-3516 : Security Advisory - mbedtls - CVE-2024-23775

Created: Jan 28, 2024 Updated: Mar 17, 2024

Resolved Date: Mar 17, 2024

Found In Version: 10.23.30.1

Severity: Standard

Applicable for: Wind River Linux LTS 23

Component/s: Userspace

Description

Integer Overflow vulnerability in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2, allows attackers to cause a denial of service (DoS) via mbedtls_x509_set_extension().

https://nvd.nist.gov/vuln/detail/CVE-2024-23775

CVEs

CVE-2024-23775