Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-0282HistoryMar 24, 2015 - 5:59 p.m.
CVE-2015-0282
2015-03-2417:59:00
Debian Security Bug Tracker
security-tracker.debian.org
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.3%
GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | gnutls28 | < 3.7.9-2+deb12u2 | gnutls28_3.7.9-2+deb12u2_all.deb |
| Debian | 11 | all | gnutls28 | < 3.7.1-5+deb11u4 | gnutls28_3.7.1-5+deb11u4_all.deb |
| Debian | 10 | all | gnutls28 | < 3.6.7-4+deb10u8 | gnutls28_3.6.7-4+deb10u8_all.deb |
| Debian | 999 | all | gnutls28 | < 3.8.5-2 | gnutls28_3.8.5-2_all.deb |
| Debian | 13 | all | gnutls28 | < 3.8.5-2 | gnutls28_3.8.5-2_all.deb |
Related
cloudfoundry
cloudfoundry
CVE-2015-0282 Multiple GnuTLS Vulnerabilities | Cloud Foundry
2015-03-23 00:00:00
prion
prion
Code injection
2015-03-24 17:59:00
ubuntucve
ubuntucve
CVE-2015-0282
2015-03-12 00:00:00
openvas
openvas
F5 BIG-IP - GnuTLS RSA PKCS signature vulnerability CVE-2015-0282
2015-09-30 00:00:00
Debian: Security Advisory (DSA-3191-1)
2015-03-14 00:00:00
Debian Security Advisory DSA 3191-1 (gnutls26 - security update)
2015-03-15 00:00:00
cve
cve
CVE-2015-0282
2015-03-24 17:59:00
f5
f5
SOL17327 - GnuTLS RSA PKCS signature vulnerability CVE-2015-0282
2015-09-28 00:00:00
K17327 : GnuTLS RSA PKCS signature vulnerability CVE-2015-0282
2015-09-28 00:00:00
nessus
nessus
F5 Networks BIG-IP : GnuTLS RSA PKCS signature vulnerability (K17327)
2015-09-29 00:00:00
Debian DSA-3191-1 : gnutls26 - security update
2015-03-17 00:00:00
Scientific Linux Security Update : gnutls on SL6.x i386/x86_64 (20150722)
2015-08-04 00:00:00
cvelist
cvelist
CVE-2015-0282
2015-03-24 17:00:00
osv
osv
gnutls26 - security update
2015-03-15 00:00:00
gnutls26 - security update
2015-03-25 00:00:00
securityvulns
securityvulns
GnuTLS security vulnerabilities
2015-03-18 00:00:00
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-18 00:00:00
debian
debian
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-15 21:42:48
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-15 21:43:05
[SECURITY] [DLA 180-1] gnutls26 security update
2015-03-25 07:50:43
veracode
veracode
Improper Signature Validation
2019-05-02 05:41:06
Improper Signature Validation
2019-05-02 05:41:06
centos
centos
gnutls security update
2015-07-26 14:11:38
oraclelinux
oraclelinux
gnutls security and bug fix update
2015-07-28 00:00:00
ubuntu
ubuntu
GnuTLS vulnerabilities
2015-03-23 00:00:00
amazon
amazon
Medium: gnutls
2015-08-04 11:36:00
redhat
redhat
(RHSA-2015:1457) Moderate: gnutls security and bug fix update
2015-07-22 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.3%
Related for DEBIANCVE:CVE-2015-0282