Download
| Alert*
oval:org.secpod.oval:def:70217
gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information. oval:org.secpod.oval:def:503790 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: * gnutls: session resumption works without master key allowing MITM For more details about the security issue, including the impac ... oval:org.secpod.oval:def:89003006 This update for gnutls fixes the following issues: - CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to b ... oval:org.secpod.oval:def:64152 A flaw was reported in the TLS session ticket key construction in GnuTLS, a library implementing the TLS and SSL protocols. The flaw caused the TLS server to not securely construct a session ticket encryption key considering the application supplied secret, allowing a man-in-the-middle attacker to b ... oval:org.secpod.oval:def:118338 GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW. oval:org.secpod.oval:def:118324 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:118335 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:118336 GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW. oval:org.secpod.oval:def:2106265 Oracle Solaris 11 - ( CVE-2019-3829 ) oval:org.secpod.oval:def:604875 A flaw was reported in the TLS session ticket key construction in GnuTLS, a library implementing the TLS and SSL protocols. The flaw caused the TLS server to not securely construct a session ticket encryption key considering the application supplied secret, allowing a man-in-the-middle attacker to b ... oval:org.secpod.oval:def:1502962 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705503 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information. |