Skip to content

modules: mbedtls: update to 3.6.3 #87637

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
Apr 9, 2025
Merged

modules: mbedtls: update to 3.6.3 #87637

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
9a44627
modules: mbedtls: update to 3.6.3
tomi-font Mar 25, 2025
f80398d
doc: releases: add release notes for Mbed TLS update
tomi-font Apr 1, 2025
9a9ba78
doc: releases: fix "Security Vulnerability Related" section for 4.1
tomi-font Apr 1, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 4 additions & 3 deletions doc/releases/release-notes-4.1.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -70,10 +70,8 @@ The following sections provide detailed lists of changes by component.

Security Vulnerability Related
******************************
The following CVEs are addressed by this release:

More detailed information can be found in:
https://docs.zephyrproject.org/latest/security/vulnerabilities.html
The following CVEs are addressed by this release:

* :cve:`2025-1673` `Zephyr project bug tracker GHSA-jjhx-rrh4-j8mx
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-jjhx-rrh4-j8mx>`_
Expand All @@ -84,6 +82,9 @@ https://docs.zephyrproject.org/latest/security/vulnerabilities.html
* :cve:`2025-1675` `Zephyr project bug tracker GHSA-2m84-5hfw-m8v4
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-2m84-5hfw-m8v4>`_

More detailed information can be found in:
https://docs.zephyrproject.org/latest/security/vulnerabilities.html

API Changes
***********

Expand Down
9 changes: 9 additions & 0 deletions doc/releases/release-notes-4.2.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,8 +40,14 @@ The following sections provide detailed lists of changes by component.

Security Vulnerability Related
******************************

The following CVEs are addressed by this release:

* :cve:`2025-27809` `TLS clients may unwittingly skip server authentication
<https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-1/>`_
* :cve:`2025-27810` `Potential authentication bypass in TLS handshake
<https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-2/>`_

More detailed information can be found in:
https://docs.zephyrproject.org/latest/security/vulnerabilities.html

Expand Down Expand Up @@ -383,3 +389,6 @@ Other notable changes
* Removed support for Nucleo WBA52CG board (``nucleo_wba52cg``) since it is NRND (Not Recommended
for New Design) and it is not supported anymore in the STM32CubeWBA from version 1.1.0 (July 2023).
The migration to :zephyr:board:`nucleo_wba55cg` (``nucleo_wba55cg``) is recommended instead.

* Updated Mbed TLS to version 3.6.3 (from 3.6.2). The release notes can be found at:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.3
2 changes: 1 addition & 1 deletion west.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -298,7 +298,7 @@ manifest:
revision: 1ed1ddd881c3784049a92bb9fe37c38c6c74d998
path: modules/lib/gui/lvgl
- name: mbedtls
revision: 3bc59adb8ca1ad0780192f206c5dc1cfad635c2b
revision: 5f889934359deccf421554c7045a8381ef75298f
path: modules/crypto/mbedtls
groups:
- crypto
Expand Down
Loading