Total vulnerabilities in the database
Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.
| Software | From | Fixed in |
|---|---|---|
| arm / mbed_tls | - | 2.16.12 |
| arm / mbed_tls | 2.17.0 | 2.28.0 |
| arm / mbed_tls | 3.0.0 | 3.0.0.x |
| arm / mbed_tls | 3.0.0-preview1 | 3.0.0-preview1.x |
| debian / debian_linux | 10.0 | 10.0.x |