Mbed TLS: Multiple Vulnerabilities

Mbed TLS: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Mbed TLS, the worst of which could result in arbitrary code execution. mbedtls 2023-01-11 2023-01-11 857813 829660 801376 778254 764317 740108 730752 remote 2.28.1 2.28.1

Mbed TLS (previously PolarSSL) is an “easy to understand, use, integrate and expand” implementation of the TLS and SSL protocols and the respective cryptographic algorithms and support code required.

Multiple vulnerabilities have been discovered in Mbed TLS. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

All Mbed TLS users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=net-libs/mbedtls-2.28.1"

CVE-2020-16150 CVE-2020-36421 CVE-2020-36422 CVE-2020-36423 CVE-2020-36424 CVE-2020-36425 CVE-2020-36426 CVE-2020-36475 CVE-2020-36476 CVE-2020-36477 CVE-2020-36478 CVE-2021-43666 CVE-2021-44732 CVE-2021-45450 CVE-2022-35409 ajak ajak