Kfyatek

**Name of the Vulnerable Software and Affected Versions** Arm Mbed TLS versions prior to 2.24.0 **Description** The issue is related to a buffer over-read in the `mbedtls x509 crl parse der` function, which can lead to a denial of service. This can be exploited by a remote attacker. The function is part of the Mbed TLS implementation of TLS and SSL protocols. **Recommendations** For versions prior to 2.24.0, update to version 2.24.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `mbedtls x509 crl parse der` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Arm Mbed TLS versions prior to 2.24.0 **Description** An issue in Arm Mbed TLS allows an attacker to recover a private key via a side-channel attack against generation of base blinding/unblinding values, potentially affecting RSA or static Diffie-Hellman. This could lead to unauthorized access to confidential data due to information disclosure through inconsistency in TLS and SSL protocol implementation. **Recommendations** For Arm Mbed TLS versions prior to 2.24.0, update to version 2.24.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data and implementing additional security measures to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mbed TLS versions prior to 2.24.0 Mbed TLS versions prior to 2.16.8 LTS Mbed TLS versions prior to 2.7.17 LTS **Description** The issue is related to the missing zeroization of plaintext buffers in the `mbedtls ssl read` function, which fails to erase unused application data from memory. This could potentially allow a remote attacker to impact data integrity. **Recommendations** For versions prior to 2.24.0, update to version 2.24.0 or later. For versions prior to 2.16.8 LTS, update to version 2.16.8 LTS or later. For versions prior to 2.7.17 LTS, update to version 2.7.17 LTS or later.

**Name of the Vulnerable Software and Affected Versions** Mbed TLS versions prior to 2.24.0 **Description** An issue in the verification of X.509 certificates allows an attacker to impersonate a domain by getting a certificate for the corresponding IPv4 or IPv6 address, provided they control that IP address. The problem arises when the subjectAltName extension is present, and the expected name is compared to any name in that extension regardless of its type. **Recommendations** For versions prior to 2.24.0, update to version 2.24.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `mbedtls x509 crt verify` function until a patch is available. Avoid using the `cn` argument of `mbedtls x509 crt verify` with certificates that have a subjectAltName extension until the issue is resolved.