mbedtls 2.2.1-2ubuntu0.3 source package in Ubuntu
Changelog
mbedtls (2.2.1-2ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: Buffer overflows and sensitive information disclousures
- debian/patches/CVE-2017-18187.patch: Prevent bounds check bypass through
overflow in PSK identity.
- debian/patches/CVE-2018-0487.patch: RSA: Fix buffer overflow in PSS
signature verification.
- debian/patches/CVE-2018-0488-1.patch: Fix heap corruption in
ssl_decrypt_buf.
- debian/patches/CVE-2018-0488-2.patch: Fix SSLv3 MAC computation.
- debian/patches/CVE-2018-0497.patch: Fix Lucky13 attack protection when
using HMAC-SHA-384.
- debian/patches/CVE-2018-0498-1.patch: Fix Lucky13 cache attack on
MD/SHA padding.
- debian/patches/CVE-2018-0498-2.patch: Add counter-measure to cache-based
Lucky 13.
- debian/patches/CVE-2018-0498-3.patch: Avoid debug message that might
leak length.
- CVE-2017-18187
- CVE-2018-0487
- CVE-2018-0488
- CVE-2018-0497
- CVE-2018-0498
* SECURITY UPDATE: Update some certificates for the tests
- debian/patches/regenerate-test-files.patch: Regenerate test files from
recent version.
-- Paulo Flabiano Smorigo <email address hidden> Tue, 04 Feb 2020 12:56:35 +0000
Upload details
- Uploaded by:
- Paulo Flabiano Smorigo
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Xenial | updates | universe | misc | |
| Xenial | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| mbedtls_2.2.1.orig.tar.gz | 1.8 MiB | 6ddd5ca2e7dfb43d2fd750400856246fc1c98344dabf01b1594eb2f9880ef7ce |
| mbedtls_2.2.1-2ubuntu0.3.debian.tar.xz | 26.5 KiB | f920aeffa4405dc5c3058703bf004b923b2b39309ab41401d6b059b03675af5c |
| mbedtls_2.2.1-2ubuntu0.3.dsc | 2.2 KiB | 1a35fe3f67df517fd1a29fb5bb9654dc85733221afb25bc7258ea61f6741ccf0 |
Available diffs
Binary packages built by this source
- libmbedcrypto0: lightweight crypto and SSL/TLS library - crypto library
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling cryptography.
- libmbedcrypto0-dbgsym: debug symbols for package libmbedcrypto0
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling cryptography.
- libmbedtls-dev: lightweight crypto and SSL/TLS library - development files
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the header files for mbed TLS.
- libmbedtls-doc: lightweight crypto and SSL/TLS library - documentation
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the API documentation.
- libmbedtls10: lightweight crypto and SSL/TLS library - tls library
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling TLS.
- libmbedtls10-dbgsym: debug symbols for package libmbedtls10
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling TLS.
- libmbedx509-0: lightweight crypto and SSL/TLS library - x509 certificate library
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling x509 certificates.
- libmbedx509-0-dbgsym: debug symbols for package libmbedx509-0
mbed TLS (formerly known as PolarSSL) is a lean open source crypto library for
providing SSL and TLS support in your programs. It offers an intuitive API and
documented header files, so you can actually understand what the code does.
It features:
- Symmetric algorithms, like AES, Blowfish, Triple-DES, DES, ARC4, Camellia
and XTEA
- Hash algorithms, like SHA-1, SHA-2, RIPEMD-160 and MD5
- Entropy pool and random generators, like CTR-DRBG and HMAC-DRBG
- Public key algorithms, like RSA, Elliptic Curves, Diffie-Hellman, ECDSA
and ECDH
- TLS 1.0, 1.1 and 1.2
- Abstraction layers for ciphers, hashes, public key operations, platform
abstraction and threading
.
This package contains the shared library handling x509 certificates.
