Multiple vulnerabilities have been found in PolarSSL, the worst of which may allow remote attackers to execute arbitrary code.
|Package||net-libs/polarssl on all architectures|
|Affected versions||< 1.3.9-r1|
PolarSSL is a cryptographic library for embedded systems.
Multiple vulnerabilities have been discovered in PolarSSL. Please review the CVE identifiers referenced below for details.
A remote attacker might be able to execute arbitrary code, cause Denial of Service condition or obtain sensitive information.
There is no known workaround at this time.
Gentoo has discontinued support for PolarSSL and recommends that users unmerge the package:
# emerge --unmerge "net-libs/polarssl"