JLSEC-2025-218

An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0

JLSEC Published: Nov 21, 2025
Modified: Nov 21, 2025
Affected Packages: MbedTLS_jll < 2.28.2+0
Aliases / Upstream: CVE-2022-35409

An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0. In some configurations, an unauthenticated attacker can send an invalid ClientHello message to a DTLS server that causes a heap-based buffer over-read of up to 255 bytes. This can cause a server crash or possibly information disclosure based on error responses. Affected configurations have MBEDTLSSSLDTLSCLIENTPORTREUSE enabled and MBEDTLSSSLINCONTENTLEN less than a threshold that depends on the configuration: 258 bytes if using mbedtlssslcookiecheck, and possibly up to 571 bytes with a custom cookie check function.

References

https://github.com/Mbed-TLS/mbedtls/releases
https://lists.debian.org/debian-lts-announce/2022/12/msg00036.html
https://mbed-tls.readthedocs.io/en/latest/security-advisories/advisories/mbedtls-security-advisory-2022-07.html
https://github.com/Mbed-TLS/mbedtls/releases
https://lists.debian.org/debian-lts-announce/2022/12/msg00036.html
https://mbed-tls.readthedocs.io/en/latest/security-advisories/advisories/mbedtls-security-advisory-2022-07.html