Download
| Alert*
oval:org.secpod.oval:def:602194
Kurt Roeckx discovered that decoding a specific certificate with very long DistinguishedName entries leads to double free. A remote attacker can take advantage of this flaw by creating a specially crafted certificate that, when processed by an application compiled against GnuTLS, could cause the ap ... oval:org.secpod.oval:def:702287 gnutls28: GNU TLS library - commandline utilities GnuTLS could be made to crash or run programs if it processed a specially crafted certificate. oval:org.secpod.oval:def:702731 gnutls28: GNU TLS library GnuTLS could be made to crash or run programs if it processed a specially crafted certificate. oval:org.secpod.oval:def:702292 libgnutls-deb0-28 is installed oval:org.secpod.oval:def:702470 gnutls28: GNU TLS library - gnutls26: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:602943 Hubert Kario discovered that GnuTLS, a library implementing the TLS and SSL protocols, does not properly decode a status response TLS extension, allowing a remote attacker to cause an application using the GnuTLS library to crash . oval:org.secpod.oval:def:702919 gnutls28: GNU TLS library - gnutls26: GNU TLS library GnuTLS could be made to expose sensitive information over the network. |