[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 144-1] polarssl security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : polarssl
Version        : 1.2.9-1~deb6u4
CVE ID         : CVE-2015-1182

A vulnerability was discovered in PolarSSL, a lightweight crypto and
SSL/TLS library. A remote attacker could exploit this flaw using
specially crafted certificates to mount a denial of service against an
application linked against the library (application crash), or
potentially, to execute arbitrary code.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=k6cO
-----END PGP SIGNATURE-----


Reply to: