FEDORA-EPEL-2026-ba79b9dff1 — security update for mbedtls

stable

mbedtls-3.6.6-1.el10_2

FEDORA-EPEL-2026-ba79b9dff1 created by mstevens a month ago for Fedora EPEL 10.2

Update to 3.6.6

Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.6

This update has been submitted for testing by mstevens.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update has been pushed to testing.

a month ago

This update has been submitted for stable by bodhi.

a month ago

This update has been pushed to stable.

a month ago

Please log in to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

a month ago

in testing

a month ago

in stable

a month ago

approved

a month ago

Builds

mbedtls-3.6.6-1.el10_2

BZ#2310289 CVE-2024-45157 mbedtls: From NVD collector [epel-all]

BZ#2405365 CVE-2025-59438 mbedtls: MbedTLS Padding oracle through timing of cipher error reporting [epel-10]

BZ#2454083 CVE-2026-34871 mbedtls: entropy on Linux can fall back to /dev/urandom [epel-all]

BZ#2454114 CVE-2026-25835 mbedtls: PSA random generator cloning [epel-all]

BZ#2454191 CVE-2026-34873 mbedtls: Mbed TLS: Client impersonation during TLS 1.3 session resumption [epel-all]

BZ#2454195 CVE-2026-34872 mbedtls: Mbed TLS and TF-PSA-Crypto: Shared secret manipulation via improper FFDH input validation [epel-all]

BZ#2454197 CVE-2025-66442 mbedtls: Mbed TLS and TF-PSA-Crypto: Information disclosure via compiler-induced timing side channel [epel-all]

BZ#2454201 CVE-2026-34875 mbedtls: Mbed TLS and TF-PSA-Crypto: Arbitrary code execution due to buffer overflow in FFDH key export [epel-all]

BZ#2454203 CVE-2026-25834 mbedtls: Mbed TLS: Algorithm downgrade vulnerability [epel-all]

mbedtls-3.6.6-1.el10_2

Automated Test Results

ignored