Search for packages
| purl | pkg:deb/debian/mbedtls@2.16.11-0.1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-8vmc-tp28-wyae | In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX. |
CVE-2021-24119
|
| VCID-t2j5-4x1d-2kb1 | Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave such as SGX or the TrustZone secure world) to recover the private keys used in RSA. |
CVE-2021-36647
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T12:47:49.057839+00:00 | Debian Importer | Fixing | VCID-8vmc-tp28-wyae | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T10:17:47.266551+00:00 | Debian Importer | Fixing | VCID-t2j5-4x1d-2kb1 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T08:46:41.624549+00:00 | Debian Importer | Fixing | VCID-8vmc-tp28-wyae | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-13T06:55:43.041501+00:00 | Debian Importer | Fixing | VCID-t2j5-4x1d-2kb1 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:45:35.995856+00:00 | Debian Importer | Fixing | VCID-t2j5-4x1d-2kb1 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:45:35.946694+00:00 | Debian Importer | Fixing | VCID-8vmc-tp28-wyae | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |