Debian 13 — libtomcrypt — multiple vulnerabilities (4 CVEs) — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2016-6129 CVE-2018-0739 CVE-2018-12437 CVE-2019-17362 Upstream summary: The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal […]