Download
| Alert*
oval:org.secpod.oval:def:89002486
This update for gnutls fixes the following issues: This update for gnutls fixes the following issues: Security issues fixed: - Improved mitigations against Lucky 13 class of attacks - quot;Just in Timequot; PRIME + PROBE cache-based side channel attack can lead to plaintext recovery - HMAC-SHA-384 ... oval:org.secpod.oval:def:89002492 This update for gnutls fixes the following issues: Security issues fixed: - Improved mitigations against Lucky 13 class of attacks - quot;Just in Timequot; PRIME + PROBE cache-based side channel attack can lead to plaintext recovery - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of w ... oval:org.secpod.oval:def:89002119 This update for gnutls fixes the following issues: This update for gnutls fixes the following issues: Security issues fixed: - Improved mitigations against Lucky 13 class of attacks - quot;Just in Timequot; PRIME + PROBE cache-based side channel attack can lead to plaintext recovery - HMAC-SHA-384 ... oval:org.secpod.oval:def:1800839 The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack. oval:org.secpod.oval:def:1800785 The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack. oval:org.secpod.oval:def:1800743 The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack. oval:org.secpod.oval:def:1800128 The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack. oval:org.secpod.oval:def:704235 libtasn1-6: Library to manage ASN.1 structures Several security issues were fixed in Libtasn1. oval:org.secpod.oval:def:53244 Two vulnerabilities were discovered in Libtasn1, a library to manage ASN.1 structures, allowing a remote attacker to cause a denial of service against an application using the Libtasn1 library. oval:org.secpod.oval:def:52102 libtasn1-6: Library to manage ASN.1 structures Several security issues were fixed in Libtasn1. oval:org.secpod.oval:def:89049718 This update for gnutls fixes the following security issues: - Improved mitigations against Lucky 13 class of attacks - CVE-2018-10846: "Just in Time" PRIME + PROBE cache-based side channel attack can lead to plaintext recovery - CVE-2018-10845: HMAC-SHA-384 vulnerable to Lucky thirteen attack due t ... oval:org.secpod.oval:def:603262 Two vulnerabilities were discovered in Libtasn1, a library to manage ASN.1 structures, allowing a remote attacker to cause a denial of service against an application using the Libtasn1 library. |