Download
| Alert*
|
oval:org.secpod.oval:def:89051295
This update for gnutls fixes the following issues: * CVE-2023-0361: Fixed a Bleichenbacher oracle in the TLS RSA key exchange . * CVE-2023-5981: Fixed timing side-channel inside RSA-PSK key exchange . oval:org.secpod.oval:def:4501522 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: * gnutls: timing side-channel in the RSA-PSK authentication For more details about the security issue, including the impact, a CVS ... oval:org.secpod.oval:def:19500566 A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. Only TLS ciphertext processing is affected oval:org.secpod.oval:def:508009 Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other pe ... oval:org.secpod.oval:def:1507254 [3.6.16-8] - timing side-channel in the RSA-PSK authentication oval:org.secpod.oval:def:2501303 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. oval:org.secpod.oval:def:96460 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information over the network. oval:org.secpod.oval:def:89051317 This update for gnutls fixes the following issues: * CVE-2023-5981: Fixed timing side-channel inside RSA-PSK key exchange . oval:org.secpod.oval:def:708607 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information over the network. oval:org.secpod.oval:def:89051319 This update for gnutls fixes the following issues: * CVE-2023-5981: Fixed timing side-channel inside RSA-PSK key exchange . oval:org.secpod.oval:def:97883 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: gnutls: timing side-channel in the RSA-PSK authentication For more details about the security issue, including the impact, a CVSS ... oval:org.secpod.oval:def:127074 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:509073 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: gnutls: timing side-channel in the RSA-PSK authentication gnutls: incomplete fix for CVE-2023-5981 gnutls: rejects certificate ch ... oval:org.secpod.oval:def:2600493 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. oval:org.secpod.oval:def:509048 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: gnutls: incomplete fix for CVE-2023-5981 For more details about the security issue, including the impact, a CVSS score, acknowledg ... oval:org.secpod.oval:def:1507310 [3.7.6-23.3] - Fixes for CVE-2023-5981, CVE-2024-0553, CVE-2024-0567 oval:org.secpod.oval:def:127111 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:89051655 This update for gnutls fixes the following issues: * CVE-2024-0553: Fixed insufficient mitigation for side channel attack in RSA- PSK, aka CVE-2023-5981 . |
